14.2.1 Variables Used in This Section
In order to create the logstash pod, you must create several yaml files. These files contains variables which you must substitute with variables applicable to your ELK environment.
Most of the values for the variables will be based on your ELK deployment as per Installing the Monitoring and Visualization Software.
The table below outlines the variables and values you must set:
| Variable | Sample Value | Description |
|---|---|---|
| <ELK_VER> |
8.3.1
|
The version of logstash you want to install. |
| <ELK_SSL> | true | If SSL is enabled for ELK set the value to true, or if
NON-SSL set to false. This value must
be lowercase.
|
| <ELK_HOSTS> |
https://elasticsearch.example.com:9200
|
The URL for sending logs to Elasticsearch. HTTP if
NON-SSL is used.
|
| <ELK_USER> |
logstash_internal
|
The name of the user for logstash to access Elasticsearch. |
| <ELK_PASSWORD> |
password
|
The password for <ELK_USER>. |
| <ELK_APIKEY> |
apikey
|
The API key details. |
You will also need the BASE64 version of the Certificate Authority (CA) certificate(s) that
signed the certificate of the Elasticsearch server. If using a self-signed certificate,
this is the self signed certificate of the Elasticsearch server. See Copying the Elasticsearch Certificate, for details on how to get
the correct certificate. In the example below the certificate is called
elk.crt.