Home Tech How to Install Logstash and Elasticsearch 7.17 on Ubuntu Desktop 22.04.5

How to Install Logstash and Elasticsearch 7.17 on Ubuntu Desktop 22.04.5

Tech By · September 20, 2025 · 0 Comment
How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-home

If you’re building a custom SIEM (Security Information and Event Management) system or simply want to harness the power of the ELK stack on your Ubuntu machine, installing Logstash and Elasticsearch is a critical first step. In this tutorial, we’ll walk you through the process of installing Logstash and Elasticsearch version 7.17 on Ubuntu Desktop 22.04.5, using the command line as the root user.

This guide is perfect for developers, system administrators, and cybersecurity professionals looking to set up a lightweight, local instance of Elasticsearch and Logstash for development or testing purposes.

Prerequisites

Before we begin, make sure you:

  • Have Ubuntu Desktop 22.04.5 installed
  • Have root access to your system
  • Have access to the internet to download packages

Open a terminal and log in as the root user to begin the installation process.

Step 1: Install Logstash on Ubuntu

1.1 Add the Elastic GPG Key

First, you need to add Elastic’s public signing key to your system. This key is used to verify the authenticity of the packages you download:

wget -qO - https://artifacts.elastic.co/GPG-KEY-elasticsearch | sudo apt-key add -

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-1

This command fetches the GPG key and adds it to your system’s keyring.

1.2 Install apt-transport-https

To fetch packages securely via HTTPS, you may need to install the apt-transport-https package:

sudo apt-get install apt-transport-https

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-2

1.3 Add the Elastic Package Repository

Next, add the Elastic repository to your sources list:

echo "deb https://artifacts.elastic.co/packages/7.x/apt stable main" | sudo tee -a /etc/apt/sources.list.d/elastic-7.x.list

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-3

This command ensures that you’re pulling version 7.17 (since it’s part of the 7.x line) from the correct repository.

1.4 Update Package List and Install Logstash

Now, update your local package index and install Logstash:

sudo apt-get update && sudo apt-get install logstash

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-4

This will install Logstash version 7.17 from the Elastic repository.

1.5 Start and Enable Logstash Service

To check if Logstash is installed properly, run:

systemctl status logstash

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-5

Initially, it may show as inactive. Start the service using:

systemctl start logstash

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-6

If you want Logstash to start automatically on boot:

systemctl enable logstash

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-7

Step 2: Install Elasticsearch on Ubuntu

Since you’ve already added the Elastic package repository in the earlier steps, installing Elasticsearch is straightforward.

2.1 Install Elasticsearch

Run the following command to install Elasticsearch version 7.17:

sudo apt-get install elasticsearch

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-8

This will install the appropriate version from the 7.x package repository.

2.2 Start and Enable Elasticsearch

Once installed, check the status of Elasticsearch:

systemctl status elasticsearch

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-9

It may be inactive after installation. Start the service using:

systemctl start elasticsearch

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-10

Elasticsearch might take a moment to start up. Once started, verify its status again:

systemctl status elasticsearch

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-11

It should now show as active (running).

To ensure Elasticsearch starts automatically on system reboot:

systemctl enable elasticsearch

How-to-Install-Logstash-and-Elasticsearch-on-Ubuntu-Desktop-12

You’ve now successfully installed both Logstash and Elasticsearch version 7.17 on your Ubuntu Desktop 22.04.5 machine. This setup forms a critical part of the ELK stack (Elasticsearch, Logstash, and Kibana), which is widely used for log analysis, monitoring, and security information event management (SIEM).

These services are now ready to be integrated with other tools or your custom scripts to process, store, and visualize data.

Summary of Commands

Here’s a quick recap of all key commands used in this tutorial:

For Logstash:

wget -qO - https://artifacts.elastic.co/GPG-KEY-elasticsearch | sudo apt-key add -
sudo apt-get install apt-transport-https
echo "deb https://artifacts.elastic.co/packages/7.x/apt stable main" | sudo tee -a /etc/apt/sources.list.d/elastic-7.x.list
sudo apt-get update && sudo apt-get install logstash
systemctl status logstash
systemctl start logstash
systemctl enable logstash

For Elasticsearch:

sudo apt-get install elasticsearch
systemctl status elasticsearch
systemctl start elasticsearch
systemctl status elasticsearch
systemctl enable elasticsearch

Next Steps

With both services installed, you can:

  • Install Kibana to complete the ELK stack
  • Begin feeding log data into Logstash for parsing
  • Configure Elasticsearch indices and mappings
  • Build dashboards to visualize logs and metrics

Setting up this stack on a local Ubuntu Desktop provides an excellent environment for learning, development, and testing. Whether you’re exploring data analytics, building security tools, or creating custom dashboards, you now have a solid foundation.

Related Posts

Top Free SSL Certificate Websites to Secure Your Website

Tech By · January 18, 2026 · 0 Comment
Top-Free-SSL-Certificate-Websites-to-Secure-Your-Website-hm
Website security is no longer optional. Search engines, browsers, and users all expect HTTPS as a standard feature. An SSL/TLS certificate encrypts data between your website and visitors, improves trust, and helps boost SEO rankings. The good news is that... Read more

SIEM Security Devices and Log Sources Explained

Tech By · January 1, 2026 · 0 Comment
SIEM-Security-Devices-and-Log-Sources-Explained
Security Information and Event Management (SIEM) platforms play a critical role in modern cybersecurity by collecting, normalizing, and analyzing logs from multiple security devices. These logs help organizations detect threats, investigate incidents, and meet compliance requirements. A well-integrated SIEM environment... Read more

How to Install Node.js 18 on Ubuntu 22.04 for SIEM

Tech By · December 11, 2025 · 0 Comment
How-to-Install-Node.js-18-on-Ubuntu-22.04 for SIEM
In today’s cybersecurity landscape, building a custom SIEM (Security Information and Event Management) system requires a stack of flexible, efficient, and scalable tools. One of the core components for developing backend services, log processors, or real-time event dashboards in a... Read more

Best Black Friday WordPress Themes 2025: Performance-Focused & Aesthetic Guide

Tech By · November 18, 2025 · 0 Comment
Black Friday WordPress Themes
Black Friday hosting deals are a great opportunity for website owners to subscribe to exciting service offerings and enhance their online presence. This especially applies if you are thinking of striking good deals on premium themes, hosting, and add-ons. If... Read more

How to Install MongoDB 8.0 on Ubuntu 22.04 Step-by-Step

Tech By · October 22, 2025 · 0 Comment
How-to-Install-MongoDB-8.0-on-Ubuntu-22.04-Step-by-Step-hm
MongoDB is a powerful NoSQL database that offers high performance, high availability, and easy scalability. If you’re running Ubuntu 22.04.5 LTS (Jammy Jellyfish) on your desktop and want to install MongoDB 8.0 Community Edition, you’re in the right place. This... Read more

What Is UTM in Cybersecurity? Unified Threat Management Explained

Tech By · September 20, 2025 · 0 Comment
What-is-UTM-in-Cybersecurity
In today’s rapidly evolving digital landscape, cybersecurity is more important than ever. Cyber threats are constantly increasing in sophistication, requiring businesses to adopt multi-layered security strategies. One of the most effective ways to achieve this is by using Unified Threat... Read more

What is a Security Operations Center (SOC)? Roles, Benefits, and Why It’s Essential for Cybersecurity

Tech By · September 20, 2025 · 1 Comment
What-is-a-Security-Operations-Center-(SOC)
In an era where cyber threats are more sophisticated and persistent than ever before, organizations need a robust and proactive defense mechanism to protect sensitive data and critical infrastructure. This is where a Security Operations Center (SOC) comes into play.... Read more

How to Install Curl on Ubuntu and Use Its Essential Commands

Tech By · September 14, 2025 · 1 Comment
How-to-Install-Curl-on-Ubuntu-and-Use-Its-Essential-Commands
Curl is a powerful and versatile command-line tool used to transfer data from or to a server using various protocols like HTTP, HTTPS, FTP, and more. It’s widely used for testing APIs, downloading files, and interacting with web resources in... Read more