[syslog-ng] Java issue with elasticsearch
László Várady
laszlo.varady at balabit.com
Fri May 25 10:35:32 UTC 2018
Hi,
Make sure that your LD_LIBRARY_PATH envvar (or ld.so.conf) contains a path
to libjvm.so.
There are good examples for this in the previously mentioned blog post.
--
László Várady
On Fri, May 25, 2018 at 12:20 PM Nagy, Gábor <gabor.nagy at balabit.com> wrote:
> Sorry I forgot to link our blog post about common java problems.
> It could help and explain some common errors during installation.
>
> https://syslog-ng.com/blog/troubleshooting-java-support-syslog-ng/
>
> Regards,
> Gabor
>
> On Fri, May 25, 2018 at 11:35 AM, Nagy, Gábor <gabor.nagy at balabit.com>
> wrote:
>
>> Hi Komi!
>>
>> You need the java package for syslog-ng too: "syslog-ng-mod-java".
>> What is the source of the syslog-ng package you installed?
>>
>> You will need additional steps after you have installed the syslog-ng
>> java package.
>> In our admin we have detailed instructions to setup elasticsearch2
>> destination:
>>
>> https://syslog-ng.com/documents/html/syslog-ng-ose-latest-guides/en/syslog-ng-ose-guide-admin/html/configuring-destinations-elasticsearch2.html
>>
>> Feel free to ask if you got stuck!
>>
>> Regards,
>> Gabor
>>
>> On Fri, May 25, 2018 at 10:49 AM, Komi Elitcha <kmw.elitcha at gmail.com>
>> wrote:
>>
>>> Good day all,
>>>
>>> I'm new to this mailing list.
>>>
>>> I'm setting up syslong-ng+elasticsearch+kibana on an Ubuntu 18.04; i'm
>>> getting the following output/error from command: ]#syslog-ng -Fve
>>>
>>>
>>> Error parsing destination, destination plugin java not found in block
>>> destination elasticsearch2 (at
>>> /usr/share/syslog-ng/include/scl/elasticsearch/plugin.conf:58:1):
>>> 1
>>> 2-----> java(
>>> 2-----> ^^^^
>>> 3
>>> class_path("/usr/lib/syslog-ng/3.15/java-modules/*.jar:/usr/lib/syslog-ng/3.15/java-modules/elastic-jest-client/*.jar:/opt/syslog-ng/jre1.8.0_171/lib//*.jar")
>>> 4 class_name("org.syslog_ng.elasticsearch_v2.ElasticSearchDestination")
>>> 5 option("index", "*log*")
>>> 6 option("type", "syslog")
>>> 7 option("server", "localhost")
>>>
>>> Included from /etc/syslog-ng/syslog-ng.conf:
>>> 90 # Debian only
>>> 91 destination d_ppp { file("/var/log/ppp.log"); };
>>> 92
>>> 93 # Elasticsearch destination
>>> 94 destination d_es {
>>> 95----> elasticsearch2(
>>> 95----> ^^^^^^^^^^^^^^^^
>>> 96 cluster("syslog-ng")
>>> 97 client-lib-dir("/usr/share/elasticsearch/lib/")
>>> 98 client-lib-dir("/opt/syslog-ng/jre1.8.0_171/lib/")
>>> 99 time-zone("UTC")
>>> 100 cluster-url("http://localhost:9200")
>>>
>>>
>>> Any help is welcome.
>>>
>>> Thanks.
>>>
>>>
>>> ______________________________________________________________________________
>>> Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
>>> Documentation:
>>> http://www.balabit.com/support/documentation/?product=syslog-ng
>>> FAQ: http://www.balabit.com/wiki/syslog-ng-faq
>>>
>>>
>>
>
> ______________________________________________________________________________
> Member info: https://lists.balabit.hu/mailman/listinfo/syslog-ng
> Documentation:
> http://www.balabit.com/support/documentation/?product=syslog-ng
> FAQ: http://www.balabit.com/wiki/syslog-ng-faq
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.balabit.hu/pipermail/syslog-ng/attachments/20180525/edf56604/attachment-0001.html>
More information about the syslog-ng
mailing list