ELK-forensics icon indicating copy to clipboard operation
ELK-forensics copied to clipboard

Published 20 hours ago verified publisher icon cvandeplas

To import data, execute the command error:: Connection refuse

Open googleman2014 opened this issue 9 years ago • 1 comments

Dear Guy, Your project is really cool and awesome,I'm very interested in it.Many thanks your great contribution.I follow your command to import data, but below error happened, please help on it.

root@debian:~/ELK-forensics# cat computername.mactime | nc -vv -n 127.0.0.1 18001 cat: computername.mactime: No such file or directory (UNKNOWN) [127.0.0.1] 18001 (?) : Connection refused sent 0, rcvd 0

root@debian:~/ELK-forensics# cat SG100-* | nc -vv -n 127.0.0.1 18002 cat: SG100-*: No such file or directory (UNKNOWN) [127.0.0.1] 18002 (?) : Connection refused sent 0, rcvd 0

googleman2014 avatar Mar 02 '15 03:03 googleman2014

Are you sure your logstash is configured and running? try a:

sudo netstat -nalp | fgrep "1800"

That should return lines stating that java is listening on these ports.

cvandeplas avatar Mar 02 '15 15:03 cvandeplas