Logstash log tail in browser

12
votes

So I setup Logstash 1.4.2 with ElasticSearch and Kibana using logstash-forwarder(lumberjack) and thats working pretty well but I also wanted to show just a raw log output(maybe searchable) via a browser similar to something like papertrail?

Is this possible, thanks!

5
loggingelasticsearchlogstashkibanapaper-trail-gem

5 Answers

5
votes

Checkout my new Kibana plugin LogTrail, that supports live tail, search and option seek to a particular time in logs in console like GUI.

enter image description here

4
votes

In the discover view, in the top-right corner, there is a play (triangle) button. Press that and your log output should periodically update (default every 10 seconds for me).

enter image description here

1
votes

There are command line utilities that can tail or query logs stored in elasticsearch. While they're not web based, they may achieve what you need.

To tail the logs using EsTail issue the following command:

node ./esTail.js --url=localhost:9200 --index=logstash*

To tail the logs using Elktail issue the following command:

elktail --url localhost:9200

More info on Elktail can be found in blogpost here.

Disclaimer: I'm author of Elktail

0
votes

I might not be following exactly... how would what you desire differ from what Kibana can offer?

Anyway, I think there are a number of options, write your own web proxy that just queries recent data from elasticsearch (could then have search too) or use the stdout type output and serve that up on your web server, could rotate that flat file to get a 'tail' like view. Or even send the data to papertrail if you really like that tail and search interface.

-10
votes

There is no "live tail" functionality in kibana.

Unless you're Rainman, or your boss is impressed by content-less blinking lights, ask yourself deeply why you want it.