每天早8点都有10条左右 的错误日志:
一直搞不定,
报错的详细内容:报错的中间都是重复的消息,具体的消息可以在附件中看;
{
: timestamp=>"2016-09-23T08:00:01.925000+0800",
: message=>"Failed action. ",
: status=>404,
: action=>[
"index",
{
: _id=>nil,
: _index=>"nginx-access-chong-2016.09.23",
: _type=>"nginx-access-chong",
: _routing=>nil
},
#<LogStash: : Event: 0x6f7dc991@metadata_accessors=#<LogStash: : Util: : Accessors: 0x31bd51db@store={
"type"=>"nginx-access-chong",
"beat"=>"filebeat"
},
@lut={
}>,
@cancelled=false,
@data={
"@version"=>"1",
"@timestamp"=>"2016-09-23T00:00:00.000Z",
"input_type"=>"log",
"beat"=>{
"hostname"=>"iZ23n4nslkwZ",
"name"=>"iZ23n4nslkwZ"
},
。。。。。。。。。
: response=>{
"index"=>{
"_index"=>"nginx-access-chong-2016.09.23",
"_type"=>"nginx-access-chong",
"_id"=>nil,
"status"=>404,
"error"=>{
"type"=>"index_not_found_exception",
"reason"=>"no such index",
"resource.type"=>"index_expression",
"resource.id"=>"nginx-access-chong-2016.09.23",
"index"=>"nginx-access-chong-2016.09.23"
}
}
},
: level=>: warn
}
一直搞不定,
报错的详细内容:报错的中间都是重复的消息,具体的消息可以在附件中看;
{
: timestamp=>"2016-09-23T08:00:01.925000+0800",
: message=>"Failed action. ",
: status=>404,
: action=>[
"index",
{
: _id=>nil,
: _index=>"nginx-access-chong-2016.09.23",
: _type=>"nginx-access-chong",
: _routing=>nil
},
#<LogStash: : Event: 0x6f7dc991@metadata_accessors=#<LogStash: : Util: : Accessors: 0x31bd51db@store={
"type"=>"nginx-access-chong",
"beat"=>"filebeat"
},
@lut={
}>,
@cancelled=false,
@data={
"@version"=>"1",
"@timestamp"=>"2016-09-23T00:00:00.000Z",
"input_type"=>"log",
"beat"=>{
"hostname"=>"iZ23n4nslkwZ",
"name"=>"iZ23n4nslkwZ"
},
。。。。。。。。。
: response=>{
"index"=>{
"_index"=>"nginx-access-chong-2016.09.23",
"_type"=>"nginx-access-chong",
"_id"=>nil,
"status"=>404,
"error"=>{
"type"=>"index_not_found_exception",
"reason"=>"no such index",
"resource.type"=>"index_expression",
"resource.id"=>"nginx-access-chong-2016.09.23",
"index"=>"nginx-access-chong-2016.09.23"
}
}
},
: level=>: warn
}
1 个回复
三斗室 - ELK
赞同来自: