0
我无法使logstash正常工作。 Basic logstash Example工作。但后来我奋斗在Advanced Pipeline Example。也许这可能是弹性搜索的一个问题。logstash简单文件输入/输出
现在我只是想检查,如果一个简单的例子工作:
- 输入:读文本文件,一个
- 输出:与文本文件,一个
但我为此而努力。我的配置如下:
# foo.conf
input {
file {
path => "C:/logstash-2.3.1/logstash-tutorial-dataset"
start_position => "beginning"
}
}
output {
stdout {}
file {
#message_format => "%{foo},%{bar},%{fii},%{bor},%{bing}"
#codec => { line { format => "custom format: %{message}"}}
path => "C:/output.txt"
}
}
当我运行logstash时,我得到下面的响应和nothings发生。
bin/logstash -f foo.conf -v --debug --verbose
io/console not supported; tty will not be manipulated
{:timestamp=>"2016-04-22T13:41:15.514000+0200", :message=>"starting agent", :level=>:info}
{:timestamp=>"2016-04-22T13:41:15.518000+0200", :message=>"starting pipeline", :id=>"main", :level=>:info}
{:timestamp=>"2016-04-22T13:41:16.035000+0200", :message=>"Registering file input", :path=>["C:/logstash-2.3.1/logstash-tutorial-dataset"], :level=>:info}
{:timestamp=>"2016-04-22T13:41:16.039000+0200", :message=>"No sincedb_path set, generating one based on the file path", :sincedb_path=>"c:/Users/foobar/.sincedb_802dc9c88c8fad631bf3d3a5c96435e4", :path=>["C:/logstash-2.3.1/logstash-tutorial-dataset"], :level=>:info}
{:timestamp=>"2016-04-22T13:41:16.103000+0200", :message=>"Starting pipeline", :id=>"main", :pipeline_workers=>4, :batch_size=>125, :batch_delay=>5, :max_inflight=>500, :level=>:info}
{:timestamp=>"2016-04-22T13:41:16.106000+0200", :message=>"Pipeline main started"}
我该如何得到一个简单的例子工作?
sincedb是空的。我多次删除它,但结果没有变化。有些东西是有线的。是否有另一个简单的hello world测试,我可以运行测试? – jerik
如果文件为空,则logstash不处理您的文件。也许现在太老了(请参阅“ignore_older”)? –