Support #415
Updated by Daniel Curtis over 9 years ago
After trying to get Logstash to work on FreeBSD, I eventually quit and started up an Arch Linux VM. This is guide will run through setting up a guide for installing an ElasticSearch, Logstash, and Kibana stack on Arch Linux. running Logstash server. * Install ElasticSearch: <pre> sudo pacman -S elasticsearch </pre> * *# Start and enable ElasticSearch at boot: <pre> systemctl enable elasticsearch.service systemctl start elasticsearch.service </pre> * Install Logstash from the AUR: <pre> yaourt mkdir ~/src && cd ~/src wget https://aur.archlinux.org/packages/lo/logstash/logstash.tar.gz tar xzf logstash.tar.gz cd logstash makepkg -s PKGBUILD </pre> *# Install the package <pre> sudo pacman -U logstash*.xz </pre> * Now add a simple configuration file to @/etc/logstash/conf.d/logstash-simple.conf@: <pre> input { file { path => "/var/log/faillog" start_position => beginning } } output { elasticsearch { host => localhost } } </pre> * Start and enable the Logstash agent: <pre> systemctl enable logstash.service systemctl start logstash.service </pre> * Start and enable the Logstash web interface: <pre> systemctl enable logstash-web.service systemctl start logstash-web.service </pre>