Skip to content
/ eslogs Public

A command-line tool for searching logs stored in elasticsearch.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ServerCentral/eslogs

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
src
src
 
 
.eslintrc.js
.eslintrc.js
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
eslogs.json
eslogs.json
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

Introduction

eslogs is a command-line tool for searching system logs stored in elasticsearch.

It takes a simple search phrase and returns log lines that match that search.

Installation

  • npm install -g eslogs
  • Edit ~/.eslogs.json or /etc/eslogs.json to match your elasticsearch configuration.
  • eslogs --help

Usage

Usage: eslogs index [options]
  
Options:
-q query           A free-text search.
-s n               Return n latest results. Higher sizes take longer. Default 100.
-h name            Only show logs from hosts that match this name.
-t time            Start searching backwards from this date. Default 'now'.
--version          Show version number.
  
Examples:
eslogs logstash-*
eslogs logstash-* -q error
eslogs logstash-* -q "192.168.1.100"
eslogs logstash-* -q "\"192.168.1.100\" AND error"
eslogs logstash-* -q "failed with error"
eslogs logstash-* -q error -t "24 hours ago"
eslogs logstash-* -q error -t "monday"
eslogs logstash-* -q error -t "12/25/2018 midnight"
eslogs logstash-* -q error -h myhost
eslogs logstash-* -q error -h 192.168.1.1
eslogs logstash-* -q error -s 10000 | less -S
watch eslogs logstash-* -q error -s 30

Example config

{
  "host": "localhost:9200",
  "indices": {
    "logstash-*": {
      "messageKey": "message",
      "timestampKey": "@timestamp",
      "hostnameKey": "host"    
    }
  }
 }

Help

File a github issue if you are having trouble.

About

A command-line tool for searching logs stored in elasticsearch.

Topics

cli elasticsearch logstash

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages