Installing Logstash on CentOS 8

Logstash is an open-source tool that helps you collect, parse, and store logs for easy analysis and visualization. It is a powerful data pipeline tool that allows you to ingest data from a variety of sources, transform it, and send it to your desired destination.

Here is a step-by-step guide to installing Logstash on CentOS 8:

Step 1: Update the System

sudo dnf update -y

Step 2: Install Java

sudo dnf install java-1.8.0-openjdk -y

Step 3: Import the Elasticsearch GPG Key

sudo rpm --import https://artifacts.elastic.co/GPG-KEY-elasticsearch

Step 4: Add the Logstash Repository

sudo vi /etc/yum.repos.d/logstash.repo

Add the following content:

[logstash-7.x]
name=Elastic repository for 7.x packages
baseurl=https://artifacts.elastic.co/packages/7.x/yum
gpgcheck=1
gpgkey=https://artifacts.elastic.co/GPG-KEY-elasticsearch
enabled=1
autorefresh=1
type=rpm-md

Save and exit the file.

Step 5: Install Logstash

sudo dnf install logstash -y

Step 6: Configure Logstash

Edit the Logstash configuration file:

sudo vi /etc/logstash/logstash.yml

Make the following changes:

path.data: /var/lib/logstash
path.logs: /var/log/logstash

Save and exit the file.

Step 7: Start and Enable Logstash

sudo systemctl start logstash
sudo systemctl enable logstash

Congratulations! You have successfully installed Logstash on CentOS 8.

I hope this guide helps you get started with Logstash. Feel free to explore more about its configuration options and advanced features to customize it according to your needs.