自动化运维之日志系统Logstash实践TCP(五) - youngperson/study-100 GitHub Wiki

1、Logstach收集tcp日志

1. 编写收集tcp日志的配置，写入node4的Redis中
# 把logstash的收集配置文件都统一放该目录下
# cd /etc/logstash/conf.d/
# vi tcp .conf
input {
	tcp {
		type => "tcp"
		host => "192.168.44.12"
		port => 6666
		mode => "server"
		}
}

output {
	redis {
		host => "192.168.44.13"
		port=> 6379
		data_type => "list"
		key => "tcp_log"
	   }
}

2、运行

# /opt/logstash/bin/logstash -f /etc/logstash/conf.d/tcp.conf &

3、测试

 node1机器(其它机器)上往该机器的666端口发送数据测试
# ssh [email protected]
# echo "test Logstash TCP Input " | nc 192.168.44.12 6666
# nc 192.168.44.12 6666 < /etc/resolv.conf
# echo "测试" > /dev/tcp/192.168.44.12/6666