-
Notifications
You must be signed in to change notification settings - Fork 285
Troubleshooting and Logs
Peter Manev edited this page May 22, 2015
·
19 revisions
If things are not working as expected or you are experiencing some trouble and would like to have a further look into things please find below SELKS major components log locations:
- Suricata
Log files and folders:
/var/log/suricata.log /var/log/suricata/stats.log /var/log/suricata/core/
The folder /var/log/suricata/core/ will contain any core dumps in case of a segfault. Further reading on what to do and how to report Suricata bugs.
- Elasticsearch
Log files:
/var/log/elasticsearch/elasticsearch.log
- Logstash
Log files:
/var/log/logstash/logstash.log