[syslog-ng] Java issue with elasticsearch

Nagy, Gábor gabor.nagy at balabit.com
Fri May 25 09:35:37 UTC 2018 

Hi Komi!

You need the java package for syslog-ng too: "syslog-ng-mod-java".
What is the source of the syslog-ng package you installed?

You will need additional steps after you have installed the syslog-ng java
package.
In our admin we have detailed instructions to setup elasticsearch2
destination:
https://syslog-ng.com/documents/html/syslog-ng-ose-latest-guides/en/syslog-ng-ose-guide-admin/html/configuring-destinations-elasticsearch2.html

Feel free to ask if you got stuck!

Regards,
Gabor

On Fri, May 25, 2018 at 10:49 AM, Komi Elitcha <kmw.elitcha at gmail.com>
wrote:

> Good day all,
>
> I'm new to this mailing list.
>
> I'm setting up syslong-ng+elasticsearch+kibana on an Ubuntu 18.04; i'm
> getting the following output/error from command: ]#syslog-ng -Fve
>
>
> Error parsing destination, destination plugin java not found in block
> destination elasticsearch2 (at /usr/share/syslog-ng/include/s
> cl/elasticsearch/plugin.conf:58:1):
> 1
> 2----->   java(
> 2----->   ^^^^
> 3 class_path("/usr/lib/syslog-ng/3.15/java-modules/*.jar:/usr/
> lib/syslog-ng/3.15/java-modules/elastic-jest-client/*.jar:/
> opt/syslog-ng/jre1.8.0_171/lib//*.jar")
> 4 class_name("org.syslog_ng.elasticsearch_v2.ElasticSearchDestination")
> 5           option("index", "*log*")
> 6           option("type", "syslog")
> 7           option("server", "localhost")
>
> Included from /etc/syslog-ng/syslog-ng.conf:
> 90      # Debian only
> 91      destination d_ppp { file("/var/log/ppp.log"); };
> 92
> 93      # Elasticsearch destination
> 94      destination d_es {
> 95---->     elasticsearch2(
> 95---->     ^^^^^^^^^^^^^^^^
> 96                cluster("syslog-ng")
> 97                client-lib-dir("/usr/share/elasticsearch/lib/")
> 98 client-lib-dir("/opt/syslog-ng/jre1.8.0_171/lib/")
> 99                time-zone("UTC")
> 100               cluster-url("http://localhost:9200")
>
>
> Any help is welcome.
>
> Thanks.
>
> ____________________________________________________________
> __________________
> Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
> Documentation: http://www.balabit.com/support/documentation/?product=
> syslog-ng
> FAQ: http://www.balabit.com/wiki/syslog-ng-faq
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.balabit.hu/pipermail/syslog-ng/attachments/20180525/6e5b6348/attachment.html>

More information about the syslog-ng mailing list