Open fechnert opened 9 years ago
I'm seeing this as well.
Are you using the official logstash image from DockerHub on the receiving end, by any chance? I was able to replicate this locally when logstash is running in docker, but if I run logstash directly, instead, the connection succeeds. I suspect it has something to do with openssl within that container.
Actually, pinning the docker image to 1.5.2 instead seems to work, too:
docker run --name=logstash -d \
-v ${PWD}/conf:/conf:ro \
-v ${PWD}/certificates:/certificates:ro \
-p 5000:5000 \
logstash:1.5.2 \
logstash -f /conf/logstash.conf --debug
I am working on fixing this, see the dicussion here this https://github.com/elastic/logstash/issues/3657. We will release a 1.5.4 version shortly.
Would you mind trying it with logstash 1.5.4 if you still see this issue?
I will try this if i have some time, but i'm already working on an ELK stack.
As far as I am concerned, the problem is still existent with version 1.5.4... tried it out right now
Hmm ok, as stated in this post (https://github.com/elastic/logstash/issues/3657) removing the lines "ssl certificate" and "ssl key" in your lsf config file does the trick.
logstash-forwarder throws this Error after starting with valid and signed Certificates:
Other issues say that they are not using IP SANs. But i'm using hostnames so that shouldn't be a problem. The certificates are signed by my own CA, but the CA's certificate is imprted and loaded in the senders server.