Logstash configuration tips for Windows – installation
March 20, 2014, with 4 commentsEver since I discovered Logstash, I really admire what the guys at elasticsearch invented – how easy it is to use and how actually simple the application is in its core.
This post will give some hints on how to run Logstash under Windows, supporting log4net.
The post collects a number of sources and will hopefully allow you to set up Logstash successfully in your environment, too.
Event logs
Logstash 1.40 is unfortunately not coming with the eventlog gem installed per default any more.
I discovered this post describing a similar issue:
https://logstash.jira.com/browse/LOGSTASH-1918
so all you have to do is:
- Get JRuby and add its bin directory to your path
- Set GEM_HOME to the vendor/bundle/jruby/1.9 directory within your logstash installation
- Clear GEM_PATH (“”)
- gem install win32ole
- Check that vendor\bundle\jruby\1.9\gems directory within your logstash installation contains the jruby-win32ole directory
- Finished
Now you can use eventlog as your input:
input {
eventlog {
type => 'Win32-EventLog'
logfile => 'System'
}
}
Next posts on Logstash:
Aktualisiert am August 22, 2014
Keine Kommentare
Schreibe einen Kommentar
Rob Thijssen schrieb am
August 22, 2014 um 9:53 amSweet! I look forward to your log4net configuration follow-up.
stephan schrieb am
August 22, 2014 um 9:19 pmHi Rob,
thanks for the feedback. This motivated me for the next posts that I promised before 🙂
Looking forward to your feedback for the two new articles!
Cheers,
Stephan
Sagar schrieb am
August 9, 2015 um 7:06 amLittle bit more elaboration of the steps i.e. what you are doing and why would have helped. I am not getting enough clarify of whether you are running these commands on Linux / Windows.
stephan schrieb am
August 9, 2015 um 8:52 pmI guess reading the title of the page helps to see that the configuration tips are for Windows. What additional information are you missing in the article?