Page 1 of 1
Nagios Dashboard Issue
Posted: Fri Jan 19, 2018 6:27 am
by SrinivasanNSL
HI,
Nagios Log Server was running out of Storage space, hence I deleted couple of Logs from "/usr/local/nagioslogserver/elasticsearch/data" path. Post reboot the Dashboard is not showing any Logs on the screen. The Error is "No results There were no results because no indices were found that match your selected time span". Please assist me in resolving this error. Also I like to know how to configure UDP port in Log server. I have a client which has to send logs over UDP 5544 to Log server. Is there any configuration to be done for it?
Re: Nagios Dashboard Issue
Posted: Fri Jan 19, 2018 2:33 pm
by cdienger
Hopefully you have some backups because the
/usr/local/nagioslogserver/elasticsearch/data path is where the database is located. You can try restoring backups from under Admin > System > Snapshot & Maintenance, if you have them.
Please see
https://support.nagios.com/kb/article.php?id=68 regarding making backups in NLS.
The UDP question is a seperate issue and should really be on another post. That said, NLS should be listening on port 5544 by default with the syslog input. You can check this under Admin > Configure > Global(All Instances) > Global config > Inputs. By default a syslog input is defined there with:
Code: Select all
syslog {
type => 'syslog'
port => 5544
}
You can verify that it up and listening by running "
netstat -nap | grep 5544" at the command line. Please open a new thread for the UDP question if more help is needed.
Re: Nagios Dashboard Issue
Posted: Sat Jan 20, 2018 5:10 am
by SrinivasanNSL
HI, Thanks for your Post. I had raised a different Query for UDP port issue.
Regarding Dashboard issue, I did deletion from the Path ("/usr/local/nagioslogserver/elasticsearch/data/c6e5aafc-ee57-4283-9c46-3b3753b9cc66/nodes/0/indices") and not from "/usr/local/nagioslogserver/elasticsearch/data".
I just deleted the Logstash-Date files to free up some space. IN my Dashboard it shows 23 clients reporting to Server but when I scroll down for LOgs I didnt see anything. PLease suggest.
Re: Nagios Dashboard Issue
Posted: Mon Jan 22, 2018 7:24 am
by SrinivasanNSL
HI,
I could see in /var/log/logstash, there are couple or Red Colour Logstash files. As per forum I removed those files then the Dashboard showing logs, but after some time again the corrupted logstash files getting created and Dashboard is not showing any Logs. Please suggest
Re: Nagios Dashboard Issue
Posted: Mon Jan 22, 2018 1:52 pm
by cdienger
Can you provide the logs and a screenshot of where you see the corrupted files? It's not clear to me what error you're seeing.
Re: Nagios Dashboard Issue
Posted: Tue Jan 23, 2018 8:46 am
by SrinivasanNSL
Please Find my comments appended along with Attachments.
Re: Nagios Dashboard Issue
Posted: Tue Jan 23, 2018 1:24 pm
by cdienger
Those are log files and the red indicates that the file was rotated and archived(see the .gz extension).
Removing these files should not have any impact on the dashboards.
I suspect there may be additional steps you are taking or something else at play here that we are not aware of. To move forward with this, please open a ticket(support.nagios.com/tickets/) and attach to it the output of:
ll /usr/local/nagioslogserver/elasticsearch/data/c6e5aafc-ee57-4283-9c46-3b3753b9cc66/nodes/0/indices
A profile which can be generated under Admin > System > System Status > Download System Profile, and the files found in /var/log/logstash and /var/log/elasticsearch.