elasticsearch - Packetbeat 抛出 Bulk item insert failed 错误
问题描述
Packetbeat 抛出以下错误
批量插入失败
当将以下处理器添加到 packetbeat.yml
processors.include_fields.fields: ["http.request.body"]
错误日志
2018-06-04T00:37:40.893+0530 ERROR pipeline/output.go:92 Failed to publish events: temporary bulk send failure
2018-06-04T00:37:40.893+0530 DEBUG [elasticsearch] elasticsearch/client.go:666 ES Ping(url=http://localhost:9200)
2018-06-04T00:37:40.894+0530 DEBUG [elasticsearch] elasticsearch/client.go:689 Ping status code: 200
2018-06-04T00:37:40.894+0530 INFO elasticsearch/client.go:690 Connected to Elasticsearch version 6.2.2
2018-06-04T00:37:40.894+0530 DEBUG [elasticsearch] elasticsearch/client.go:708 HEAD http://localhost:9200/_template/packetbeat-6.2.4 <nil>
2018-06-04T00:37:40.895+0530 INFO template/load.go:73 Template already exists and will not be overwritten.
2018-06-04T00:37:40.896+0530 DEBUG [elasticsearch] elasticsearch/client.go:303 PublishEvents: 1 events have been published to elasticsearch in 1.245631ms.
2018-06-04T00:37:40.896+0530 DEBUG [elasticsearch] elasticsearch/client.go:507 Bulk item insert failed (i=0, status=500): {"type":"string_index_out_of_bounds_exception","reason":"String index out of range: 0"}
环境:elasticsearch 版本 - 6.2.4 packetbeat 版本 - 6.2.4
解决方案
我设法找到了这个错误的根源。这是在将以下内容添加到 packetbeat.yml 时
index: "packetbeat-%{[beat.version]}-%{+yyyy.MM.dd.HH}"
当我删除它时,问题就消失了。似乎是自定义索引命名的错误
推荐阅读
- javascript - 如果数据是视频文件,如何在 mongoose 中指定我的数据类型?
- python - 使用python的nums和mods,简单的问题
- mysql - put order by in right place mysql
- email - Gmail:此邮件似乎很危险
- minecraft - Minecraft 命令方块目标选择器能否在特定的 1 方块位置搜索玩家?
- python - 使用 FMPy 模拟 OpenModelica 示例时出错
- c++ - 比较 C++ 中的 char 数组
- javascript - 用户角色层次结构
- javascript - 收到以下错误(TypeError: undefined is not an object (Evaluating 'props.route.params.contactId))
- c# - 绑定受其他属性影响的 DataContext 值