自动化运维之日志系统Logstash实践JAVA(六) - youngperson/study-100 GitHub Wiki

1、Logstach收集java日志

1. 编写收集java日志的配置，写入node4的Redis中
# 把logstash的收集配置文件都统一放该目录下
# es是java服务，收集es需要注意换行问题(该node3机器安装下ES,和前面2台进行集群)
# cd /etc/logstash/conf.d/
# vi  java.conf
input {
	file {
		type => "elasticsearch"
		path => "/var/log/elasticsearch/elk-cluter.log"
		codec => multiline {
        pattern => "^\["
        negate => true
        what => "previous"
        }
    }
}

output {
	redis {
		host => "192.168.44.13"
		port=> 6379
		data_type => "list"
		key => "access_es_log"
	   }
}

2、运行

# /opt/logstash/bin/logstash -f /etc/logstash/conf.d/java.conf &

3、测试

重启下ES看数据