API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Sep 27th, 2019
166
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 28.92 KB | None | 0 0
raw download clone embed print report
  1. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.208+0300#011INFO#011instance/beat.go:607#011Home path: [/usr/share/filebeat] Config path: [/etc/filebeat] Data path: [/var/lib/filebeat] Logs path: [/var/log/filebeat]
  2. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.208+0300#011DEBUG#011[beat]#011instance/beat.go:659#011Beat metadata path: /var/lib/filebeat/meta.json
  3. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.208+0300#011INFO#011instance/beat.go:615#011Beat ID: cef5a589-eb81-4525-bb53-d4279ed5fef0
  4. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.209+0300#011DEBUG#011[seccomp]#011seccomp/seccomp.go:117#011Loading syscall filter#011{"seccomp_filter": {"no_new_privs":true,"flag":"tsync","policy":{"default_action":"errno","syscalls":[{"names":["accept","accept4","access","arch_prctl","bind","brk","clock_gettime","clone","close","connect","dup","dup2","epoll_create","epoll_create1","epoll_ctl","epoll_pwait","epoll_wait","exit","exit_group","fchdir","fchmod","fchown","fcntl","fdatasync","flock","fstat","fstatfs","fsync","ftruncate","futex","getcwd","getdents","getdents64","geteuid","getgid","getpeername","getpid","getppid","getrandom","getrlimit","getrusage","getsockname","getsockopt","gettid","gettimeofday","getuid","inotify_add_watch","inotify_init1","inotify_rm_watch","ioctl","kill","listen","lseek","lstat","madvise","mincore","mkdirat","mmap","mprotect","munmap","nanosleep","newfstatat","open","openat","pipe","pipe2","poll","ppoll","pread64","pselect6","pwrite64","read","readlink","readlinkat","recvfrom","recvmmsg","recvmsg","rename","renameat","rt_sigaction","rt_sigprocmask","rt_sigreturn","sched_getaffinity","sched_yield","sendfile","sendmmsg","sendmsg","sendto","set_robust_list","setitimer","setsockopt","shutdown","sigaltstack","socket","splice","stat","statfs","sysinfo","tgkill","time","tkill","uname","unlink","unlinkat","wait4","waitid","write","writev"],"action":"allow"}]}}}
  5. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.209+0300#011INFO#011[seccomp]#011seccomp/seccomp.go:124#011Syscall filter successfully installed
  6. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.209+0300#011INFO#011[beat]#011instance/beat.go:903#011Beat info#011{"system_info": {"beat": {"path": {"config": "/etc/filebeat", "data": "/var/lib/filebeat", "home": "/usr/share/filebeat", "logs": "/var/log/filebeat"}, "type": "filebeat", "uuid": "cef5a589-eb81-4525-bb53-d4279ed5fef0"}}}
  7. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.209+0300#011INFO#011[beat]#011instance/beat.go:912#011Build info#011{"system_info": {"build": {"commit": "5b046c5a97fe1e312f22d40a1f05365621aad621", "libbeat": "7.3.2", "time": "2019-09-06T13:49:32.000Z", "version": "7.3.2"}}}
  8. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.209+0300#011INFO#011[beat]#011instance/beat.go:915#011Go runtime info#011{"system_info": {"go": {"os":"linux","arch":"amd64","max_procs":8,"version":"go1.12.4"}}}
  9. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.210+0300#011INFO#011[beat]#011instance/beat.go:919#011Host info#011{"system_info": {"host": {"architecture":"x86_64","boot_time":"2019-09-24T10:53:50+03:00","containerized":false,"name":"bisArch","ip":["127.0.0.1/8","::1/128","172.26.110.20/24","fe80::20c:29ff:fe78:1fc4/64"],"kernel_version":"4.4.0-164-generic","mac":["00:0c:29:78:1f:c4"],"os":{"family":"debian","platform":"ubuntu","name":"Ubuntu","version":"16.04.6 LTS (Xenial Xerus)","major":16,"minor":4,"patch":6,"codename":"xenial"},"timezone":"MSK","timezone_offset_sec":10800,"id":"2f5a4fda36414759bf2516a8aff3b510"}}}
  10. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.211+0300#011INFO#011[beat]#011instance/beat.go:948#011Process info#011{"system_info": {"process": {"capabilities": {"inheritable":null,"permitted":["chown","dac_override","dac_read_search","fowner","fsetid","kill","setgid","setuid","setpcap","linux_immutable","net_bind_service","net_broadcast","net_admin","net_raw","ipc_lock","ipc_owner","sys_module","sys_rawio","sys_chroot","sys_ptrace","sys_pacct","sys_admin","sys_boot","sys_nice","sys_resource","sys_time","sys_tty_config","mknod","lease","audit_write","audit_control","setfcap","mac_override","mac_admin","syslog","wake_alarm","block_suspend","audit_read"],"effective":["chown","dac_override","dac_read_search","fowner","fsetid","kill","setgid","setuid","setpcap","linux_immutable","net_bind_service","net_broadcast","net_admin","net_raw","ipc_lock","ipc_owner","sys_module","sys_rawio","sys_chroot","sys_ptrace","sys_pacct","sys_admin","sys_boot","sys_nice","sys_resource","sys_time","sys_tty_config","mknod","lease","audit_write","audit_control","setfcap","mac_override","mac_admin","syslog","wake_alarm","block_suspend","audit_read"],"bounding":["chown","dac_override","dac_read_search","fowner","fsetid","kill","setgid","setuid","setpcap","linux_immutable","net_bind_service","net_broadcast","net_admin","net_raw","ipc_lock","ipc_owner","sys_module","sys_rawio","sys_chroot","sys_ptrace","sys_pacct","sys_admin","sys_boot","sys_nice","sys_resource","sys_time","sys_tty_config","mknod","lease","audit_write","audit_control","setfcap","mac_override","mac_admin","syslog","wake_alarm","block_suspend","audit_read"],"ambient":null}, "cwd": "/", "exe": "/usr/share/filebeat/bin/filebeat", "name": "filebeat", "pid": 6360, "ppid": 1, "seccomp": {"mode":"filter"}, "start_time": "2019-09-27T11:46:48.300+0300"}}}
  11. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.211+0300#011INFO#011instance/beat.go:292#011Setup Beat: filebeat; Version: 7.3.2
  12. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.211+0300#011DEBUG#011[beat]#011instance/beat.go:318#011Initializing output plugins
  13. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.211+0300#011INFO#011elasticsearch/client.go:170#011Elasticsearch url: http://johannesburg.cmp.org:9200
  14. Sep 27 11:46:49 bisArch filebeat[6360]: message repeated 5 times: [ 2019-09-27T11:46:49.211+0300#011INFO#011elasticsearch/client.go:170#011Elasticsearch url: http://johannesburg.cmp.org:9200]
  15. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.212+0300#011INFO#011elasticsearch/client.go:170#011Elasticsearch url: http://johannesburg.cmp.org:9200
  16. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.212+0300#011INFO#011elasticsearch/client.go:170#011Elasticsearch url: http://johannesburg.cmp.org:9200
  17. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.212+0300#011DEBUG#011[publisher]#011pipeline/consumer.go:137#011start pipeline event consumer
  18. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.212+0300#011INFO#011[publisher]#011pipeline/module.go:97#011Beat name: bisArch
  19. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.420+0300#011INFO#011elasticsearch/client.go:170#011Elasticsearch url: http://johannesburg.cmp.org:9200
  20. Sep 27 11:46:49 bisArch filebeat[6360]: message repeated 7 times: [ 2019-09-27T11:46:49.420+0300#011INFO#011elasticsearch/client.go:170#011Elasticsearch url: http://johannesburg.cmp.org:9200]
  21. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.421+0300#011DEBUG#011[monitoring]#011pipeline/consumer.go:137#011start pipeline event consumer
  22. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.422+0300#011DEBUG#011[monitoring]#011elasticsearch/elasticsearch.go:233#011Start monitoring endpoint init loop.
  23. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.422+0300#011DEBUG#011[monitoring]#011elasticsearch/client.go:55#011Monitoring client: connect.
  24. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.422+0300#011DEBUG#011[elasticsearch]#011elasticsearch/client.go:719#011ES Ping(url=http://johannesburg.cmp.org:9200)
  25. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.422+0300#011INFO#011[monitoring]#011log/log.go:118#011Starting metrics logging every 30s
  26. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.423+0300#011INFO#011kibana/client.go:117#011Kibana url: http://johannesburg.cmp.org:5601
  27. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.428+0300#011DEBUG#011[elasticsearch]#011elasticsearch/client.go:742#011Ping status code: 200
  28. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.428+0300#011INFO#011elasticsearch/client.go:743#011Attempting to connect to Elasticsearch version 7.3.1
  29. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.428+0300#011DEBUG#011[elasticsearch]#011elasticsearch/client.go:761#011GET http://johannesburg.cmp.org:9200/_xpack?human=false <nil>
  30. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.461+0300#011DEBUG#011[elasticsearch]#011elasticsearch/client.go:761#011GET http://johannesburg.cmp.org:9200/_xpack?filter_path=features.monitoring.enabled <nil>
  31. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.494+0300#011DEBUG#011[monitoring]#011elasticsearch/client.go:90#011XPack monitoring is enabled
  32. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.494+0300#011INFO#011[monitoring]#011elasticsearch/elasticsearch.go:262#011Successfully connected to X-Pack Monitoring endpoint.
  33. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.494+0300#011DEBUG#011[monitoring]#011elasticsearch/elasticsearch.go:268#011Finish monitoring endpoint init loop.
  34. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.494+0300#011INFO#011[monitoring]#011elasticsearch/elasticsearch.go:276#011Start monitoring stats metrics snapshot loop with period 10s.
  35. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.494+0300#011INFO#011[monitoring]#011elasticsearch/elasticsearch.go:276#011Start monitoring state metrics snapshot loop with period 1m0s.
  36. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.765+0300#011INFO#011kibana/client.go:117#011Kibana url: http://johannesburg.cmp.org:5601
  37. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.804+0300#011DEBUG#011[dashboards]#011dashboards/kibana_loader.go:146#011Initialize the Kibana 7.3.1 loader
  38. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.804+0300#011DEBUG#011[dashboards]#011dashboards/kibana_loader.go:146#011Kibana URL http://johannesburg.cmp.org:5601
  39. Sep 27 11:46:49 bisArch filebeat[6360]: 2019-09-27T11:46:49.804+0300#011DEBUG#011[dashboards]#011dashboards/kibana_loader.go:146#011Importing directory /usr/share/filebeat/kibana/7
  40. Sep 27 11:46:50 bisArch filebeat[6360]: 2019-09-27T11:46:50.621+0300#011DEBUG#011[dashboards]#011dashboards/kibana_loader.go:146#011Import directory /usr/share/filebeat/kibana/7
  41. Sep 27 11:46:50 bisArch filebeat[6360]: 2019-09-27T11:46:50.622+0300#011DEBUG#011[dashboards]#011dashboards/kibana_loader.go:146#011Import dashboard from /usr/share/filebeat/kibana/7/dashboard/Filebeat-syslog.json
  42. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.629+0300#011INFO#011instance/beat.go:777#011Kibana dashboards successfully loaded.
  43. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.629+0300#011INFO#011instance/beat.go:422#011filebeat start running.
  44. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.629+0300#011DEBUG#011[test]#011registrar/migrate.go:159#011isFile(/var/lib/filebeat/registry) -> false
  45. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.629+0300#011DEBUG#011[test]#011registrar/migrate.go:159#011isFile() -> false
  46. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.629+0300#011DEBUG#011[test]#011registrar/migrate.go:152#011isDir(/var/lib/filebeat/registry/filebeat) -> true
  47. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.629+0300#011DEBUG#011[test]#011registrar/migrate.go:159#011isFile(/var/lib/filebeat/registry/filebeat/meta.json) -> false
  48. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.629+0300#011DEBUG#011[registrar]#011registrar/migrate.go:51#011Registry type '' found
  49. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.629+0300#011DEBUG#011[test]#011registrar/migrate.go:159#011isFile(.bak) -> false
  50. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.629+0300#011DEBUG#011[test]#011registrar/migrate.go:152#011isDir(/var/lib/filebeat/registry/filebeat) -> true
  51. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.629+0300#011DEBUG#011[test]#011registrar/migrate.go:159#011isFile(/var/lib/filebeat/registry/filebeat/meta.json) -> false
  52. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.629+0300#011INFO#011registrar/migrate.go:112#011Initialize registry meta file
  53. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.634+0300#011INFO#011registrar/registrar.go:108#011No registry file found under: /var/lib/filebeat/registry/filebeat/data.json. Creating a new registry file.
  54. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.634+0300#011DEBUG#011[registrar]#011registrar/registrar.go:411#011Write registry file: /var/lib/filebeat/registry/filebeat/data.json (0)
  55. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.639+0300#011DEBUG#011[registrar]#011registrar/registrar.go:404#011Registry file updated. 0 states written.
  56. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.639+0300#011INFO#011registrar/registrar.go:145#011Loading registrar data from /var/lib/filebeat/registry/filebeat/data.json
  57. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.639+0300#011INFO#011registrar/registrar.go:152#011States Loaded from registrar: 0
  58. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.639+0300#011DEBUG#011[modules]#011beater/filebeat.go:372#011Existing Ingest pipelines will be updated
  59. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.639+0300#011INFO#011crawler/crawler.go:72#011Loading Inputs: 0
  60. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.639+0300#011DEBUG#011[registrar]#011registrar/registrar.go:278#011Starting Registrar
  61. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.639+0300#011DEBUG#011[cfgfile]#011cfgfile/reload.go:133#011Checking module configs from: /etc/filebeat/modules.d/*.yml
  62. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.640+0300#011DEBUG#011[cfgfile]#011cfgfile/cfgfile.go:175#011Load config from file: /etc/filebeat/modules.d/bis.yml
  63. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.640+0300#011DEBUG#011[cfgfile]#011cfgfile/reload.go:147#011Number of module configs found: 1
  64. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.680+0300#011DEBUG#011[conditions]#011conditions/conditions.go:98#011New condition regexp: map[]
  65. Sep 27 11:46:51 bisArch filebeat[6360]: message repeated 4 times: [ 2019-09-27T11:46:51.680+0300#011DEBUG#011[conditions]#011conditions/conditions.go:98#011New condition regexp: map[]]
  66. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.681+0300#011DEBUG#011[conditions]#011conditions/conditions.go:98#011New condition regexp: map[]
  67. Sep 27 11:46:51 bisArch filebeat[6360]: message repeated 2 times: [ 2019-09-27T11:46:51.681+0300#011DEBUG#011[conditions]#011conditions/conditions.go:98#011New condition regexp: map[]]
  68. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.681+0300#011DEBUG#011[processors]#011processors/processor.go:93#011Generated new processors: add_locale=[format=offset], add_fields
  69. =====cut===
  70. , condition=regexp: map[], add_fields={"event":{"timezone":"UTC"}}
  71. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.682+0300#011DEBUG#011[input]#011log/config.go:204#011recursive glob enabled
  72. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.682+0300#011DEBUG#011[input]#011log/input.go:160#011exclude_files: [(?-s:.)gz(?-m:$)]. Number of stats: 0
  73. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.682+0300#011DEBUG#011[input]#011log/input.go:181#011input with previous states loaded: 0
  74. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.682+0300#011INFO#011log/input.go:148#011Configured paths: [====cut===/*.txt]
  75. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.682+0300#011INFO#011crawler/crawler.go:106#011Loading and starting Inputs completed. Enabled inputs: 0
  76. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.682+0300#011INFO#011cfgfile/reload.go:171#011Config reloader started
  77. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.683+0300#011DEBUG#011[cfgfile]#011cfgfile/reload.go:197#011Scan for new config files
  78. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.683+0300#011DEBUG#011[cfgfile]#011cfgfile/cfgfile.go:175#011Load config from file: /etc/filebeat/modules.d/bis.yml
  79. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.685+0300#011DEBUG#011[cfgfile]#011cfgfile/reload.go:216#011Number of module configs found: 1
  80. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.685+0300#011DEBUG#011[reload]#011cfgfile/list.go:62#011Starting reload procedure, current runners: 0
  81. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.690+0300#011DEBUG#011[reload]#011cfgfile/list.go:80#011Start list: 1, Stop list: 0
  82. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.694+0300#011DEBUG#011[conditions]#011conditions/conditions.go:98#011New condition regexp: map[]
  83. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.694+0300#011DEBUG#011[conditions]#011conditions/conditions.go:98#011New condition regexp: map[]
  84. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.695+0300#011DEBUG#011[conditions]#011conditions/conditions.go:98#011New condition regexp: map[]
  85. Sep 27 11:46:51 bisArch filebeat[6360]: message repeated 2 times: [ 2019-09-27T11:46:51.695+0300#011DEBUG#011[conditions]#011conditions/conditions.go:98#011New condition regexp: map[]]
  86. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.696+0300#011DEBUG#011[conditions]#011conditions/conditions.go:98#011New condition regexp: map[]
  87. Sep 27 11:46:51 bisArch filebeat[6360]: message repeated 2 times: [ 2019-09-27T11:46:51.696+0300#011DEBUG#011[conditions]#011conditions/conditions.go:98#011New condition regexp: map[]]
  88. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.696+0300#011DEBUG#011[processors]#011processors/processor.go:93#011Generated new processors: add_locale=[format=offset], add_fields
  89. =====cut===
  90. add_fields={"event":{"timezone":"UTC"}}
  91. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.697+0300#011DEBUG#011[input]#011log/config.go:204#011recursive glob enabled
  92. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.697+0300#011DEBUG#011[input]#011log/input.go:160#011exclude_files: [(?-s:.)gz(?-m:$)]. Number of stats: 0
  93. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.697+0300#011DEBUG#011[input]#011log/input.go:181#011input with previous states loaded: 0
  94. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.697+0300#011INFO#011log/input.go:148#011Configured paths: [====cut===*.txt]
  95. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.697+0300#011DEBUG#011[reload]#011cfgfile/list.go:101#011Starting runner: bis (formatted)
  96. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.698+0300#011INFO#011elasticsearch/client.go:170#011Elasticsearch url: http://johannesburg.cmp.org:9200
  97. Sep 27 11:46:51 bisArch filebeat[6360]: message repeated 3 times: [ 2019-09-27T11:46:51.698+0300#011INFO#011elasticsearch/client.go:170#011Elasticsearch url: http://johannesburg.cmp.org:9200]
  98. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.699+0300#011INFO#011elasticsearch/client.go:170#011Elasticsearch url: http://johannesburg.cmp.org:9200
  99. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.700+0300#011INFO#011elasticsearch/client.go:170#011Elasticsearch url: http://johannesburg.cmp.org:9200
  100. Sep 27 11:46:51 bisArch filebeat[6360]: message repeated 2 times: [ 2019-09-27T11:46:51.700+0300#011INFO#011elasticsearch/client.go:170#011Elasticsearch url: http://johannesburg.cmp.org:9200]
  101. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.701+0300#011DEBUG#011[elasticsearch]#011elasticsearch/client.go:719#011ES Ping(url=http://johannesburg.cmp.org:9200)
  102. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.705+0300#011DEBUG#011[elasticsearch]#011elasticsearch/client.go:742#011Ping status code: 200
  103. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.705+0300#011INFO#011elasticsearch/client.go:743#011Attempting to connect to Elasticsearch version 7.3.1
  104. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.705+0300#011DEBUG#011[elasticsearch]#011elasticsearch/client.go:761#011GET http://johannesburg.cmp.org:9200/_xpack?human=false <nil>
  105. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.766+0300#011DEBUG#011[modules]#011fileset/pipelines.go:67#011Required processors: []
  106. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.799+0300#011DEBUG#011[elasticsearch]#011elasticsearch/client.go:761#011PUT http://johannesburg.cmp.org:9200/_ingest/pipeline/filebeat-7.3.2-pipeline map[description:Pipeline for parsing dotnet messages. on_failure:[map[set:map[field:error.message value:{{ _ingest.on_failure_message }}]]] processors:[map[grok:map[field:message ignore_missing:true patterns:
  107. ====cut===
  108. formats:[yyyyMMddHHmmss] timezone:UTC]] map[remove:map[field:null]]]]
  109. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.898+0300#011INFO#011fileset/pipelines.go:134#011Elasticsearch pipeline with ID 'filebeat-7.3.2-pipeline' loaded
  110. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.898+0300#011INFO#011input/input.go:114#011Starting input of type: log; ID: 14283980320964143642
  111. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.899+0300#011INFO#011cfgfile/reload.go:226#011Loading of config files completed.
  112. Sep 27 11:46:51 bisArch filebeat[6360]: 2019-09-27T11:46:51.899+0300#011DEBUG#011[input]#011log/input.go:187#011Start next scan
  113. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.309+0300#011DEBUG#011[input]#011log/input.go:417#011Check file for harvesting: /====cut===_20190926_095038_364065.txt
  114. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.309+0300#011DEBUG#011[input]#011log/input.go:490#011Start harvester for new file: /====cut===_20190926_095038_364065.txt
  115. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.309+0300#011DEBUG#011[harvester]#011log/harvester.go:490#011Setting offset for file based on seek: /====cut===_20190926_095038_364065.txt
  116. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.309+0300#011DEBUG#011[harvester]#011log/harvester.go:476#011Setting offset for file: /====cut===_20190926_095038_364065.txt. Offset: 0
  117. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.309+0300#011DEBUG#011[harvester]#011log/harvester.go:183#011Harvester setup successful. Line terminator: 1
  118. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[publisher]#011pipeline/client.go:200#011Pipeline client receives callback 'onFilteredOut' for event: %+v{0001-01-01 00:00:00 +0000 UTC null null { false 0xc006241ad0 /====cut===_20190926_095038_364065.txt 0 2019-09-27 11:46:54.309204052 +0300 MSK m=+5.156981557 -1ns log map[] 542809802-2065} false}
  119. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[harvester]#011log/harvester.go:395#011Update state: /====cut===_20190926_095038_364065.txt, offset: 0
  120. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[input]#011file/states.go:68#011New state added for /====cut===_20190926_095038_364065.txt
  121. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[input]#011log/input.go:417#011Check file for harvesting: /bi====cut===_20190924_084616_247939.txt
  122. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[input]#011log/input.go:490#011Start harvester for new file: /====cut===_20190924_084616_247939.txt
  123. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[harvester]#011log/harvester.go:490#011Setting offset for file based on seek: /b====cut===_202_20190924_084616_247939.txt
  124. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[acker]#011beater/acker.go:64#011stateful ack#011{"count": 1}
  125. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[harvester]#011log/harvester.go:476#011Setting offset for file: /====cut===_20190924_084616_247939.txt. Offset: 0
  126. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[harvester]#011log/harvester.go:183#011Harvester setup successful. Line terminator: 1
  127. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[publisher]#011pipeline/client.go:200#011Pipeline client receives callback 'onFilteredOut' for event: %+v{0001-01-01 00:00:00 +0000 UTC null null { false 0xc0064adad0 /====cut===_20190924_084616_247939.txt 0 2019-09-27 11:46:54.31023964 +0300 MSK m=+5.158017134 -1ns log map[] 539339902-2065} false}
  128. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[harvester]#011log/harvester.go:395#011Update state: /====cut===_20190924_084616_247939.txt, offset: 0
  129. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011INFO#011log/harvester.go:253#011Harvester started for file: /====cut===_20190926_095038_364065.txt
  130. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[input]#011file/states.go:68#011New state added for /====cut===_20190924_084616_247939.txt
  131. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[registrar]#011registrar/registrar.go:356#011Processing 1 events
  132. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[input]#011log/input.go:417#011Check file for harvesting: /====cut===_20190924_132724_1077569.txt
  133. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[acker]#011beater/acker.go:64#011stateful ack#011{"count": 1}
  134. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[input]#011file/states.go:68#011New state added for /====cut===_20190926_095038_364065.txt
  135. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011INFO#011log/harvester.go:253#011Harvester started for file: /====cut===_20190924_084616_247939.txt
  136. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[registrar]#011registrar/registrar.go:326#011Registrar state updates processed. Count: 1
  137. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.311+0300#011DEBUG#011[registrar]#011registrar/registrar.go:411#011Write registry file: /var/lib/filebeat/registry/filebeat/data.json (1)
  138. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.310+0300#011DEBUG#011[input]#011log/input.go:490#011Start harvester for new file: /====cut===_20190924_132724_1077569.txt
  139. Sep 27 11:46:54 bisArch filebeat[6360]: 2019-09-27T11:46:54.311+0300#011DEBUG#011[processors]#011processing/processors.go:183#011Publish event: {
  140. Sep 27 11:46:54 bisArch filebeat[6360]: "@timestamp": "2019-09-27T08:46:54.310Z",
  141. Sep 27 11:46:54 bisArch filebeat[6360]: "@metadata": {
  142. Sep 27 11:46:54 bisArch filebeat[6360]: "beat": "filebeat",
  143. Sep 27 11:46:54 bisArch filebeat[6360]: "type": "_doc",
  144. Sep 27 11:46:54 bisArch filebeat[6360]: "version": "7.3.2",
  145. Sep 27 11:46:54 bisArch filebeat[6360]: "pipeline": "filebeat-7.3.2-pipeline"
  146. Sep 27 11:46:54 bisArch filebeat[6360]: },
  147. Sep 27 11:46:54 bisArch filebeat[6360]: "ecs": {
  148. Sep 27 11:46:54 bisArch filebeat[6360]: "version": "1.0.1"
  149. Sep 27 11:46:54 bisArch filebeat[6360]: },
  150. Sep 27 11:46:54 bisArch filebeat[6360]: "log": {
  151. Sep 27 11:46:54 bisArch filebeat[6360]: "offset": 0,
  152. Sep 27 11:46:54 bisArch filebeat[6360]: "file": {
  153. Sep 27 11:46:54 bisArch filebeat[6360]: "path": "/====cut===_20190926_095038_364065.txt"
  154. Sep 27 11:46:54 bisArch filebeat[6360]: }
  155. Sep 27 11:46:54 bisArch filebeat[6360]: },
  156. Sep 27 11:46:54 bisArch filebeat[6360]: "message": "====cut===",
  157. Sep 27 11:46:54 bisArch filebeat[6360]: "service": {
  158. Sep 27 11:46:54 bisArch filebeat[6360]: "type": "bis"
  159. Sep 27 11:46:54 bisArch filebeat[6360]: },
  160. Sep 27 11:46:54 bisArch filebeat[6360]: "agent": {
  161. Sep 27 11:46:54 bisArch filebeat[6360]: "id": "cef5a589-eb81-4525-bb53-d4279ed5fef0",
  162. Sep 27 11:46:54 bisArch filebeat[6360]: "version": "7.3.2",
  163. Sep 27 11:46:54 bisArch filebeat[6360]: "type": "filebeat",
  164. Sep 27 11:46:54 bisArch filebeat[6360]: "ephemeral_id": "0bd78f95-077c-4e19-96c0-303ef739d8dc",
  165. Sep 27 11:46:54 bisArch filebeat[6360]: "hostname": "bisArch"
  166. Sep 27 11:46:54 bisArch filebeat[6360]: },
  167. Sep 27 11:46:54 bisArch filebeat[6360]: "host": {
  168. Sep 27 11:46:54 bisArch filebeat[6360]: "name": "bisArch"
  169. Sep 27 11:46:54 bisArch filebeat[6360]: },
  170. Sep 27 11:46:54 bisArch filebeat[6360]: "input": {
  171. Sep 27 11:46:54 bisArch filebeat[6360]: "type": "log"
  172. Sep 27 11:46:54 bisArch filebeat[6360]: },
  173. Sep 27 11:46:54 bisArch filebeat[6360]: "event": {
  174. Sep 27 11:46:54 bisArch filebeat[6360]: "module": "bis",
  175. Sep 27 11:46:54 bisArch filebeat[6360]: "dataset": "bis.formatted",
  176. Sep 27 11:46:54 bisArch filebeat[6360]: "timezone": "UTC"
  177. Sep 27 11:46:54 bisArch filebeat[6360]: },
  178. Sep 27 11:46:54 bisArch filebeat[6360]: "fileset": {
  179. Sep 27 11:46:54 bisArch filebeat[6360]: "name": "formatted"
  180. Sep 27 11:46:54 bisArch filebeat[6360]: },
  181. Sep 27 11:46:54 bisArch filebeat[6360]: "bis": {
  182. Sep 27 11:46:54 bisArch filebeat[6360]: "====cut==="
  183. Sep 27 11:46:54 bisArch filebeat[6360]: }
  184. Sep 27 11:46:54 bisArch filebeat[6360]: }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!