[syslog-ng] Elastic search data loading ?
Scot Needy
scotrn at gmail.com
Fri Apr 15 19:05:17 CEST 2016
I don’t see you on IRC.
I think I am making progress but not sure how.
Shutdown ES Kibana and syslog-ng. rm-rf /var/lib/elasticsearch/*
Started ES
Started syslog-ng.
Startred Kibaba.
I see logs.. !
Must be a simpler way.
Now I need to tune GeoIP and pattern_db.
> On Apr 15, 2016, at 10:46 AM, Fabien Wernli <wernli at in2p3.fr> wrote:
>
> On Fri, Apr 15, 2016 at 10:38:48AM -0400, Scot Needy wrote:
>> This seems to be a problem with how Kibana is looking at the ES.
>
> yes, and as such it's an ES/kibana issue.
> I'd be happy to assist you further through another channel, e.g. on IRC or
> through email.
>
> The next steps for you are probably:
>
> * set the timestamp in kibana
> * add a default field in your index mapping
>
More information about the syslog-ng
mailing list