From 84cb914d0357eca634613e5c42e86bed72e87fb4 Mon Sep 17 00:00:00 2001
From: Michel Oosterhof <michel@oosterhof.net>
Date: Tue, 3 Feb 2015 19:54:02 +0000
Subject: [PATCH] updated

---
 utils/elk/HOWTO.md | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/utils/elk/HOWTO.md b/utils/elk/HOWTO.md
index 2e6344b..8d9ed13 100644
--- a/utils/elk/HOWTO.md
+++ b/utils/elk/HOWTO.md
@@ -21,3 +21,13 @@ How to process Kippo output in an ELK stack
     cp logstash-kippo.conf /etc/logstash/conf.d
     service logstash restart
 
+* By default the logstash is creating debug logs in /tmp.
+
+* To test whether logstash is working correctly, check the file in /tmp
+
+    tail /tmp/kippo-logstash.log
+
+* To test whether data is loaded into ElasticSearch, run the following query:
+
+    http://<hostname>:9200/_search?q=kippo&size=5
+