Install Logstash

Skip this section if you already have Logstash installed and configured.

IMPORTANT: Please ensure that you follow all the security-related best practices and guidelines outlined in the Logstash documentation to avoid any potential security risks.

You can install either the free, open source version of Logstash (OSS) or the paid version (Elastic).

Information on released versions of Logstash is available at Logstash Reference. Links in the following steps show an example of installing current version of Logstash on Linux.

  1. Install the service: Installing Logstash (OSS free version)
  2. Based on your OS, after installation do one of the following:

  3. Next, enable Logstash to start when the system boots up:

    Those are 2 examples: adjust instructions according to your particular Operating System.

For Generic Troubleshooting Instructions for Logstash, follow this link: Logstash Troubleshooting

If you are using CentOS, note the following:

  • Logstash logs are stored in /var/log/logstash/logstash-plain.log
  • If you install logstash using rpm install, make sure it installs as logstash user and folders get created with the same user: not the root user.