Logstash handler for every check resault

Paneng_Worldwide · April 27, 2016, 9:15am

Hello,

We are using the logstash handler to write the check results into our ELK cluster. Unfortunately it just writes the stat changes (e.g. OK -> critical). What we want is every check result into logstash even when the status keeps being “OK”.

Here the config:

“logstash”: {

“command”: “/etc/sensu/handlers/logstash.rb”,

“severities”: [

“ok”,

“warning”,

“critical”,

“unknown”

],

“type”: “pipe”

}

Philipp_H · April 27, 2016, 5:55pm

That happens by design only metric events are handled every time. Our solution is using filebeat to collect all server and client logs and send them to logstash. They can be parsed easily and you get check results even if the server is unreachable or something like that.

Topic		Replies	Views
sensu metrics to logstash Sensu Classic (EOL)	2	402	November 22, 2018
Sensu Plugin for Parsing raw XML Sensu Classic (EOL)	4	574	November 22, 2018
Sending check results to influxdb Sensu Classic (EOL)	3	526	November 22, 2018
Write check response on agent to log file Sensu Go	10	533	June 22, 2020
Sensu metrics to logstash Sensu Classic (EOL)	1	377	November 22, 2018

Logstash handler for every check resault

Related Topics