Related

Join the DigitalOcean Community Community

Join 1M+ other developers and:

  • Get help and share knowledge in Q&A
  • Subscribe to topics of interest
  • Get courses & tools that help you grow as a developer or small business owner
 Join Now
GUI for MongoDB needed to mange Meteor app Question Question
Why are snapshots so slow Question Question

Question

ERR SSL client failed to connect with: dial tcp 192.168.1.10:5044: getsockopt: connection refused

Posted April 25, 2016 12.7k views
UbuntuSecurityElasticsearch

Hi ,
I try to connect to ELK server from my server client but I get this error when I restart my filebeat daemon :

  • Restarting Sends log files to Logstash or directly to Elasticsearch. filebeat 2016/04/25 12:27:55.381622 transport.go:125: ERR SSL client failed to connect with: dial tcp 192.168.1.10:5044: getsockopt: connection refused

Can any one help me ?

Add a comment
benchaabenwissem
By:
benchaabenwissem

Related

Join the DigitalOcean Community Community

Join 1M+ other developers and:

  • Get help and share knowledge in Q&A
  • Subscribe to topics of interest
  • Get courses & tools that help you grow as a developer or small business owner
 Join Now
GUI for MongoDB needed to mange Meteor app Question Question
Why are snapshots so slow Question Question
Add a comment
1 comment
  • kamaln7 April 28, 2016
    Reply Report

    Hi @benchaabenwissem!

    Is 192.168.1.10 the IP of the machine that is running Logstash/ElasticSearch? Are both machines on the same local network? Can you please post the output of the following command when run on 192.168.1.10 so that we can see if the issue is related to a firewall rule?

    sudo iptables -L -n

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

×
Submit an Answer
1 answer
sicateur May 2, 2016

Hi, i have the same error :
localhost /usr/bin/filebeat[80858]: transport.go:125: SSL client failed to connect with: dial tcp 172.16.1.133:5044: getsockopt: connection refused"

both of machines running on the same cluster (local)
input {
beats {
port => 5044
ssl => true
sslcertificate => “/etc/pki/tls/certs/logstash-forwarder.crt”
sslkey => “/etc/pki/tls/private/logstash-forwarder.key”
}
}
filter {
if [type] == “DooperaLog” {
grok {
match => { “message” => “%{COMBINEDAPACHELOG}” }
}
geoip {
source => “clientip”
}
}

}

output {
if [type] == “DooperaLog” {
elasticsearch {
hosts => [“localhost:9200”]
sniffing => true
managetemplate => false
index => “Doopera-%{+YYYY.MM.dd}”
documenttype => “%{[@metadata][type]}”
}
}

}

that’s work with syslog configuration and i have filebeat*xxxxx output but when i change to matching with my what i need i don’t see anything.

Any help please ?

Reply Report

Related

Looking for something else?

Ask a new question Search for more help