Hi, Am Freitag, April 27, 2018 13:58 CEST, Pavel Korovin <p...@tristero.se> schrieb:
> Dear all, > > Please find updates for > sysutils/logstash > textproc/elasticsearch > www/kibana > and new sysutils/x-pack port attached. I installed/updated all but the x-pack, but I still don't get logstash starting up with beats plugin with SSL enabled, seems I still hit: https://github.com/logstash-plugins/logstash-input-beats/issues/188 Here's my beats input config snippet, otherwise, using more or less the defaults that the updated package installs: cat /etc/logstash/conf.d/filebeat.yml input { beats { host => "127.0.0.1" port => 12364 ssl => true ssl_certificate => "/etc/logstash/logstash.crt" ssl_key => "/etc/logstash/logstash.key" ssl_certificate_authorities => [ "/etc/logstash/logstash-ca.crt" ] ssl_verify_mode => "force_peer" cipher_suites => [ 'TLS_RSA_WITH_AES_256_CBC_SHA' ] # cipher_suites => [ 'TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256' ] } } ... I tried to play with different ciphers, but to no avail. Some more info I added to the issue mentioned above. But maybe I'm missing something obvious, so if someone gets the beats input to work with SSL I'm all ears Sebastian > > Major ELK changes: > - Tighten permissions on config (/etc/*), data (/var/*) and log > dirs, mostly chmod o= > - Default logstash configuration uses pipelines and relies on > sysutils/beats/filebeat instead of file input plugin > - Elasticsearch templates used by logstash are installed to > ${SYSCONFDIR}/logstash/conf.d/templates for easier > reference/modification > - Logstash supports reload > - Included distribution docs > - Updated pkg-readmes > > Also provided port for Elastic X-Pack: works fine on OpenBSD except > machine learning and reporting features, which are disabled. > > -- > With best regards, > Pavel Korovin
