Logstash Sumo Logic Output Plugin

This is a plugin for Logstash. It is fully free and fully open source. The license is Apache 2.0, meaning you are pretty much free to use it however you want in whatever way.

Getting Started

1. Create a Sumo Logic HTTP source

• Create a Sumo Logic free account if you currently don't have one.
• Create a HTTP source in your account and get the URL for this source. It should be something like https://events.sumologic.net/receiver/v1/http/XXXXXXXXXX

2. Install LogStash on your machine

• Following this instruction to download and install LogStash. This plugin require Logstash 2.3 or higher to run.

3. Build plugin gem and install to LogStash

• Build your plugin gem

In your local Git clone, running:

gem build logstash-output-sumologic.gemspec

You will get a .gem file as logstash-output-sumologic-1.0.0.gem

• Install plugin into LogStash

In the Logstash home, running:

bin/logstash-plugin install <path of .gem>

4. Start Logstash and send log

In the Logstash home, running:

bin/logstash -e 'input{stdin{}}output{sumologic{url=>"<url from step 1>"}}'

This will send any input from console to Sumo Logic cloud service.

5. Get result from Sumo Logic web app

• Logon to Sumo Logic web app and run Search or Live Tail

Further things

• Try it with different input/filter/codec plugins
• Start LogStash as a service/daemon in your production environment
• Report and issue or idea through Git Hub