To test if the log server was working I added the nagios server as a host, now I get all my logs for the localhost in double and can't figure out how to delete the double.
I used the scripts to install so everything is as the "default" installation scripts are configured.
Any help would be greatly appreciated.
Deleting host
Deleting host
Last edited by carobell on Wed Jul 17, 2019 12:30 pm, edited 1 time in total.
-
- DevOps Engineer
- Posts: 19396
- Joined: Tue Nov 15, 2011 3:11 pm
- Location: Nagios Enterprises
- Contact:
Re: Deleting host
the following should remove it
Code: Select all
rm -f /etc/rsyslog.d/99-nagioslogserver.conf
systemctl restart rsyslog
Re: Deleting host
That seems to have taken care of it!
Unsurprisingly the old logs are still available, is there a way to only delete the logs of that one server ?
EDIT: I figured that, in my case, since I just started I would simply edit the "Snapshots & Maintenance" option "Delete indexes older than" to 1 so that I will simply have to wait until tomorrow for the unwanted logs to be deleted and reset the delete option afterwards.
Unsurprisingly the old logs are still available, is there a way to only delete the logs of that one server ?
EDIT: I figured that, in my case, since I just started I would simply edit the "Snapshots & Maintenance" option "Delete indexes older than" to 1 so that I will simply have to wait until tomorrow for the unwanted logs to be deleted and reset the delete option afterwards.
Re: Deleting host
Another option would be to run a query like this:
Where IP is the IP address of the host the records came from.
Code: Select all
curl -XDELETE 'http://localhost:9200/logstash-*/_query?q=host:IP'
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.
Re: Deleting host
Corrected. Thanks!
As of May 25th, 2018, all communications with Nagios Enterprises and its employees are covered under our new Privacy Policy.