To use FluentD with Humio, you’ll obviously first have to install FluentD. Please refer to the FluentD Downloads Page with installation guides. For the full documentation on FluentD please see their Quick Start Guide.

Elastic Output Plugin (Deprecated)


Due to changes made by Elastic in the Elasticsearch open source libraries they are no longer compatible with non-Elastic instances of Elasticsearch. Even installing an older version of the FluentD elasticsearch plugin will not work as this typically builds with the latest versions of the dependencies.

You’ll have to configure the Elasticsearch Output Plugin. Below is an example of how you might configure the output plugin for Humio Cloud:

<match **>
  @type           elasticsearch
  host            cloud.humio.com
  port            9200
  scheme          https
  ssl_version     TLSv1_2
  user            ${MyRepoName}
  password        ${MyIngestToken}
  logstash_format true

In the example here, host is the hostname of your Humio instance. The port is where Humio is exposing the Elastic endpoint. Don’t forget to enable the ELASTIC_PORT variable. Replace MyRepoName with your Humio repository name and MyIngestToken with your ingest token.

Depending on whether TLS is enabled on host:port, scheme should be set to either https or http. Humio Cloud has TLS enabled. In some cases it’s necessary to specify the SSL version, so set ssl_version as you see here. The user should be repository name, and the password should be the ingest token.