[syslog-ng] Help! CentOS 7 ELK Stack from repos no index data.

Scot Needy scotrn at gmail.com
Thu Sep 8 13:32:19 CEST 2016


Thanks for the response 

I see the size growing but not the doc count. Flat log /var/log/network.log is getting new data every second 

health status index    pri rep docs.count docs.deleted store.size pri.store.size


[root at meo syslog-ng]# while true;do curl http://localhost:9200/_cat/indices;sleep 5;done
yellow open .kibana              1 1 2 0  5.7kb  5.7kb
yellow open syslog-ng_2016.09.08 5 1 1 3 12.7kb 12.7kb
yellow open syslog-ng_2016.09.07 5 1 2 5 12.9kb 12.9kb
yellow open .kibana              1 1 2 0  5.7kb  5.7kb
yellow open syslog-ng_2016.09.08 5 1 1 5 12.7kb 12.7kb
yellow open syslog-ng_2016.09.07 5 1 2 5 12.9kb 12.9kb
yellow open .kibana              1 1 2 0  5.7kb  5.7kb
yellow open syslog-ng_2016.09.08 5 1 1 1 12.1kb 12.1kb
yellow open syslog-ng_2016.09.07 5 1 2 5 12.9kb 12.9kb
yellow open .kibana              1 1 2 0  5.7kb  5.7kb
yellow open syslog-ng_2016.09.08 5 1 1 0 12.1kb 12.1kb
yellow open syslog-ng_2016.09.07 5 1 2 5 12.9kb 12.9kb



> On Sep 8, 2016, at 3:25 AM, Fabien Wernli <wernli at in2p3.fr> wrote:
> 
> curl http://localhost:9200/_cat/indices <http://localhost:9200/_cat/indices>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.balabit.hu/pipermail/syslog-ng/attachments/20160908/272ea332/attachment.htm 


More information about the syslog-ng mailing list