Find the Best Cosmetic Hospitals

Explore trusted cosmetic hospitals and make a confident choice for your transformation.

“Invest in yourself — your confidence is always worth it.”

Explore Cosmetic Hospitals

Start your journey today — compare options in one place.

Home Elastic How to install & configure Elastic Filebeat?

How to install & configure Elastic Filebeat?

Elastic · April 23, 2026 · Comments off

Filebeat client is a lightweight, resource-friendly tool that collects logs from files on the server and forwards these logs to your Logstash instance for processing. Filebeat is designed for reliability and low latency. Filebeat has a light resource footprint on the host machine, and the Beats input plugin minimizes the resource demands on the Logstash instance.

Prerequisite

To get started, go here to download the sample data set used in this example. Unpack the file.
$ wget https://download.elastic.co/demos/logstash/gettingstarted/logstash-tutorial.log.gz

Step 1 – Download your preferred beat. e.g filebeat

Using – https://www.elastic.co/downloads/beats/

Install a filebeat 7.x

Using – https://www.elastic.co/downloads/beats/filebeat

$ sudo yum install wget -y
$ wget https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-7.15.0-linux-x86_64.tar.gz
$ tar -zxvf filebeat-7.15.0-linux-x86_64.tar.gz
Code language: JavaScript (javascript)

Install a filebeat 9.0

sudo -s
cd
wget https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-9.0.0-linux-x86_64.tar.gz
tar -zxvf filebeat-9.0.0-linux-x86_64.tar.gz
cd filebeat-9.0.0-linux-x86_64
vi filebeat.yml
sudo ./filebeat -e -c filebeat.ymlCode language: JavaScript (javascript)

Install a filebeat 9.3

$ cd
$ wget https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-9.3.3-linux-x86_64.tar.gz
$ tar -zxvf filebeat-9.3.3-linux-x86_64.tar.gz 
$ mv filebeat-9.3.3-linux-x86_64 filebeat
$ cd filebeat/
$ vi filebeat.yml [ AS PER THE IMAGE BELOW ] 
$ sudo ./filebeat -e -c filebeat.ymlCode language: PHP (php)

Step 3 – Configure a filebeat.yml input with a some log file

Open the filebeat.yml file located in your Filebeat installation directory, and replace the contents with the following lines. Make sure paths points to the example Apache log file, logstash-tutorial.log, that you downloaded earlier:

$ vi filebeat-7.15.0-linux-x86_64/filebeat.yml

enabled: true

filebeat.inputs:
- type: log
  paths:
    - /path/to/file/logstash-tutorial.log 
output.logstash:
  hosts: ["localhost:5044"]Code language: JavaScript (javascript)

Step 4 – Configure a filebeat.yml output with Logstash or elasticsearch

output.elasticsearch:
  # Array of hosts to connect to.
  hosts: ["localhost:9200"]

  # Performance preset - one of "balanced", "throughput", "scale",
  # "latency", or "custom".
  preset: balanced

  # Protocol - either `http` (default) or `https`.
  protocol: "https"

  # Authentication credentials - either API key or username/password.
  #api_key: "id:api_key"
  username: "elastic"
  password: "XM1P5CVhIJ48MlU_fPTj"
  ssl.certificate_authorities: ["/home/ubuntu/elasticsearch-9.0.0/config/certs/http_ca.crt"]
Code language: PHP (php)

Step 5 – Start a logbeat

$ cd filebeat-7.2.0-linux-x86_64/
$ sudo chown root filebeat.yml
$ sudo ./filebeat -e -c filebeat.yml -d "publish"
or
$ sudo ./filebeat -e -c filebeat.ymlCode language: JavaScript (javascript)
To run filebeat as a background process

$ sudo ./filebeat -e -c filebeat.yml -d "publish" &
$ screen -d -m ./filebeat -e -c filebeat.yml -d "publish"Code language: JavaScript (javascript)

Filebeat will attempt to connect on port 5044. Until Logstash starts with an active Beats plugin, there won’t be any answer on that port, so any messages you see regarding failure to connect on that port are normal for now.

Configuration file of filebeats

To delete the Filebeat registry file

For example, run:

$ cd /home/ec2-user/filebeat-7.2.0-linux-x86_64
$ sudo rm -rf data/registry
$ sudo chown root filebeat.yml
$ sudo ./filebeat -e -c filebeat.yml -d "publish"
$ sudo ./filebeat -e -c filebeat.yml -d "publish"Code language: JavaScript (javascript)

Find Trusted Cardiac Hospitals

Compare heart hospitals by city and services — all in one place.

Explore Hospitals
Rajesh Kumar
I’m a DevOps/SRE/DevSecOps/Cloud Expert passionate about sharing knowledge and experiences. I have worked at <a href="https://www.cotocus.com/">Cotocus</a>. I share tech blog at <a href="https://www.devopsschool.com/">DevOps School</a>, travel stories at <a href="https://www.holidaylandmark.com/">Holiday Landmark</a>, stock market tips at <a href="https://www.stocksmantra.in/">Stocks Mantra</a>, health and fitness guidance at <a href="https://www.mymedicplus.com/">My Medic Plus</a>, product reviews at <a href="https://www.truereviewnow.com/">TrueReviewNow</a> , and SEO strategies at <a href="https://www.wizbrand.com/">Wizbrand.</a> Do you want to learn <a href="https://www.quantumuting.com/">Quantum Computing</a>? <strong>Please find my social handles as below;</strong> <a href="https://www.rajeshkumar.xyz/">Rajesh Kumar Personal Website</a> <a href="https://www.youtube.com/TheDevOpsSchool">Rajesh Kumar at YOUTUBE</a> <a href="https://www.instagram.com/rajeshkumarin">Rajesh Kumar at INSTAGRAM</a> <a href="https://x.com/RajeshKumarIn">Rajesh Kumar at X</a> <a href="https://www.facebook.com/RajeshKumarLog">Rajesh Kumar at FACEBOOK</a> <a href="https://www.linkedin.com/in/rajeshkumarin/">Rajesh Kumar at LINKEDIN</a> <a href="https://www.wizbrand.com/rajeshkumar">Rajesh Kumar at WIZBRAND</a> <a href="https://www.rajeshkumar.xyz/dailylogs">Rajesh Kumar DailyLogs</a>

Related Posts

Elastic

Install and Configure Elasticsearch: Step by Step Guide

· April 23, 2026 · Comments off

Install and Configure Elasticsearch in Linux Download and Extract Elasticsearch Run and Verify Elasticsearch 9.3 Run and Verify Elasticsearch 7.x Run and Verify Elasticsearch 8.x Run and…

Read More
Elastic

About Elastic (The Company)

· May 4, 2025 · 0 Comment

Certainly! Here’s a detailed overview of Elastic N.V. (commonly known as Elastic, the company behind Elasticsearch), covering its transformation, history, key milestones, product evolution, and major release…

Read More
Elastic

How to install kibana and configure with Elasticsearch

· May 4, 2025 · 1 Comment

Download & Extract kibana 8.x Configure kibana 8.x Download, Extract, Install and Configure kibana 9.x vi config/kibana.yml ./bin/kibana –allow-root Provide Enrollment Kye of ElasticSearch Login to Kibana…

Read More
Elastic

Aws Tutorials: FinOps – List of all Elasticcache cost optimization strategies

· August 5, 2024 · 0 Comment

Here’s a table summarizing the cost optimization strategies for Amazon ElastiCache: Strategy Description Right-Sizing Instances Select instance types that match workload requirements. Use smaller nodes for development…

Read More
Elastic

AWS Tutorials: Difference between Amazon Elasticsearch Service and Amazon Elastic cache Service

· July 25, 2024 · 0 Comment

Here is a comparison table highlighting the differences between Amazon Elasticsearch Service (now known as Amazon OpenSearch Service) and Amazon ElastiCache Service: Feature/Aspect Amazon OpenSearch Service Amazon…

Read More
Elastic

AWS Tutorials: How to Shutdown (Stop / Start) ElastiCache Service in AWS

· July 25, 2024 · 0 Comment

ElastiCache does not support direct stopping and starting of clusters. Instead, the best way to minimize the cost of ElastiCache when it’s not in use is to…

Read More