No description, website, or topics provided.
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
Dockerfile
README.md
collectd-types.db
lc-tlscert
lc-tlscert.go
logstash_screenshot.png
run.sh

README.md

Journalist

Journalist runs logstash to aggregate logs, in conjunction with clay/scribe which ships logs.

Pre-build

Generate tls cert (may have to build lc-tlscert.go - https://golang.org/)

./lc-tlscert

Create a ./certs directory and move the generated certs to:

certs/logstash-forwarder.crt
certs/logstash-forwarder.key

Build

docker build -t journalist .

Run

docker run \
    --restart on-failure \
    -v /data/elasticsearch:/data/elasticsearch \
    -p 5043:5043 \
    -p 514:514 \
    -p 9292:9292 \
    -p 9200:9200 \
    -p 9300:9300 \
    --name journalist \
    -d \
    -t journalist

Now you can checkout your logs here: http://1.2.3.4:9292/index.html

logstash

Scribe

Once you set up the master journalist server, you can start shipping logs to it via clay/scribe

Copy ./certs into your clay/scribe repo directory
Edit run.sh

docker build -t scribe .
docker run \
    --restart always \
    -v /var/log/app:/var/log/app \
    -e LOGSTASH_SERVER=1.2.3.4:5043 \
    --name scribe \
    -d \
    -t scribe

See Scribe docs for optional logrotate setup information