| title | layout |
|---|---|
Learn - logstash |
content_right |
logstash is a tool for managing your logs.
It helps you take logs and other event data from your systems and move it into a central place. logstash is open source and completely free. You can find support on the mailing list and on IRC.
For an overview of logstash and why you would use it, you should watch the presentation I gave at CarolinaCon 2011: video here. This presentation covers logstash, how you can use it, some alternatives, logging best practices, parsing tools, etc. Video also below:
<iframe width="480" height="296" src="http://www.youtube.com/embed/RuUFnog29M4" frameborder="0" allowfullscreen="allowfullscreen"></iframe>The slides are available online here: slides.
There's documentation here on this site. If that isn't sufficient, you can email the mailing list ([email protected]). Further, there is also an IRC channel - #logstash on irc.freenode.org.
If you find a bug or have a feature request, file them on github. (Honestly though, if you prefer email or irc for such things, that works for me, too.)
Try this guide for a simple real-world example getting started using logstash.