elasticsearch elasticsearch未从logstash.conf索引,elasticsearch,indexing,logstash,logstash-grok,elasticsearch,Indexing,Logstash,Logstash Grok" /> elasticsearch elasticsearch未从logstash.conf索引,elasticsearch,indexing,logstash,logstash-grok,elasticsearch,Indexing,Logstash,Logstash Grok" />
Fatal编程技术网
  • elasticsearch/
  • elasticsearch elasticsearch未从logstash.conf索引

elasticsearch elasticsearch未从logstash.conf索引

indexing logstash

elasticsearch elasticsearch未从logstash.conf索引,elasticsearch,indexing,logstash,logstash-grok,elasticsearch,Indexing,Logstash,Logstash Grok,我是elasticsearch新手这是我的logstash.conf文件 input { #stdin {} file { path => "/demo_logs/2015-12-14.txt" start_position => "beginning" } } filter { csv { columns => ["data_date", "ip", "method", "status", "time"]

我是elasticsearch新手这是我的logstash.conf文件

input {
   #stdin {}
  file {
    path => "/demo_logs/2015-12-14.txt"
    start_position => "beginning"
  }
}

filter {
     csv {
        columns => ["data_date", "ip", "method", "status", "time"]
        separator => ","
    }
}

output {
  elasticsearch {
        action => "index"
        hosts => "localhost"
        index => "logstash-%{+YYYY.MM.dd}"
        workers => 1
}
  stdout { codec => rubydebug }
}
我已经使用/bin/logstach-f logstash.conf触发了conf文件 loggstash已启动,没有关于在elasticsearch中打开文件和索引的过程

所以我只是对stdin{}进行了注释,以便在终端中获得输入,如下所示

input{
       stdin {}
       #file {
        #path => "/demo_logs/2015-12-14.txt"
        #start_position => "beginning"
      #}
}
我再次运行conf文件,并将值插入为

2015-12-14 07:29:24.35630127.0.0.1,获取姓名,退出,0:00:00.298635

它的错误显示为

Trouble parsing csv {:field=>"message", :source=>"", :exception=>#<NoMethodError: undefined method `each_index' for nil:NilClass>, :level=>:warn}
解析csv时出现问题{:field=>“message”,:source=>“”,:exception=>#这可能主要是因为您的数据包含空行。如果是日志文件,您可以在记事本++中打开它,然后转到编辑->行操作->删除空行。希望这对您有所帮助。这可能主要是因为您的数据包含空行。如果是日志文件,您可以在记事本++中打开它并转到ed它->行操作->删除空行。希望这有助于

您使用的是哪个版本的Logstash?使用elasticsearch\u http代替elasticsearch怎么样?您使用的是哪个版本的Logstash?使用elasticsearch\u http代替elasticsearch怎么样?