ELK Stack latest version Test one installation _php tutorial

ELK Stack latest Version test an installation chapter

Let's cut the crap and go straight to the chase.
See version first
Filebeat1.0.0-rc2 logstash2.0.0-1 elasticsearch2.0.0 kibana4.2

So much content can be simply summed up as follows:
noun explanation

Elasticsearch Storage Index
Kibana UI
Kibana Dashboard Visualization Thinking Map
Logstash Input Beats Plugin collecting events
Elasticsearch Output Plugin Sending transactions
Filebeat Log Data Shipper shipper
Topbeat Lightweight Server Monitoring
Packetbeat on-line network packet analysis




Architecture




One, client Installation


Filebeat Architecture




Https://www.elastic.co/guide/en/beats/filebeat/current/filebeat-getting-started.html#filebeat-installation


Nginx Log Client Installation Filebeat


Installing Filebeat
Curl-l-O https://download.elastic.co/beats/filebeat/filebeat-1.0.0-rc2-x86_64.rpm
Rpm-vi filebeat-1.0.0-rc2-x86_64.rpm
Configure Filebeat
/etc/filebeat/filebeat.yml


Filebeat configuration:
Filebeat:
Prospectors:
-
Paths
-"/var/log/*.log"
Fields
Type:syslog
Output
Elasticsearch
Enabled:true
Hosts: ["http://localhost:5043"]


Start Filebeat


[Root@backup01 filebeat]# curl-xput ' Http://192.168.0.58:9200/_template/filebeat?pretty '-d@/etc/filebeat/ Filebeat.template.json
{
"Acknowledged": true
}




Topbeat
Https://www.elastic.co/guide/en/beats/topbeat/current/topbeat-getting-started.html


Curl-l-O https://download.elastic.co/beats/topbeat/topbeat-1.0.0-rc2-x86_64.rpm
RPM-VIH topbeat-1.0.0-rc2-x86_64.rpm


Packetbeat
Https://www.elastic.co/guide/en/beats/packetbeat/current/packetbeat-getting-started.html
Yum Install Libpcap
Curl-l-O https://download.elastic.co/beats/packetbeat/packetbeat-1.0.0-rc2-x86_64.rpm
Rpm-vi packetbeat-1.0.0-rc2-x86_64.rpm




Second, server-side installation


Installing Elk
Https://www.elastic.co/guide/en/beats/libbeat/1.0.0-rc2/getting-started.html#logstash-setup


You can analyze logs, monitor server status, and analyze network packets such as the HTTP protocol.


Elasticearch Installation


Yum Install JAVA-1.7.0-OPENJDK
Curl-l-O https://download.elastic.co/elasticsearch/elasticsearch/elasticsearch-2.0.0.rpm
RPM-IVH elasticsearch-2.0.0.rpm


Configure startup
Cat/etc/elasticsearch/elasticsearch.yml |grep-ev "^$|^#"
Path.data:/data
Path.logs:/data/elklogs
network.host:192.168.0.58


chmod elasticsearch:elasticsearch/data/elasticsearch/-R
chmod elasticsearch:elasticsearch/data/elklogs/-R


Service Elasticsearch Start




Test Elasticearch
[Root@localhost ~]# Curl http://127.0.0.1:9200
{
"Name": "Redwing",
"Cluster_Name": "Elasticsearch",
"Version": {
"Number": "2.0.0",
"Build_hash": "De54438d6af8f9340d50c5c786151783ce7d6be5",
"Build_timestamp": "2015-10-22t08:09:48z",
"Build_snapshot": false,
"Lucene_version": "5.2.1"
},
"Tagline": "Know, for Search"
}




Logstash installation (102.131)


Curl-l-O https://download.elastic.co/logstash/logstash/packages/centos/logstash-2.0.0-1.noarch.rpm
RPM-IVH logstash-2.0.0-1.noarch.rpm




Logstash Configuration
Cat Nginxconf.json
Input {
Beats {
Port = 5044
}
}


Output {
Elasticsearch {
hosts = "192.168.0.58:9200"
Sniffing = True
Manage_template = False
index = "%{[@metadata][beat]}-%{+yyyy. MM.DD} "
Document_type = "%{[@metadata][type]}"
}
}




Kibana Installation


Curl-l-O https://download.elastic.co/kibana/kibana/kibana-4.2.0-linux-x64.tar.gz
Tar xzvf kibana-4.2.0-linux-x64.tar.gz
CD kibana-4.2.0-linux-x64/
./bin/kibana


First modify KIBANA.YML to set the port number, Elaticsearch
MV Kibana-4.2.0-linux-x64/var/kibana
NOHUP/VAR/KIBANA/BIN/KIBANA-E http://192.168.0.58:9200 &


Log [13:14:14.588] [Info][status][plugin:kibana] status changed from uninitialized to Green-ready
Log [13:14:14.617] [Info][status][plugin:elasticsearch] status changed from uninitialized to yellow-waiting for Elastics Earch
Log [13:14:14.630] [info][status][plugin:kbn_vislib_vis_types] status changed from uninitialized to Green-ready
Log [13:14:14.639] [Info][status][plugin:markdown_vis] status changed from uninitialized to Green-ready
Log [13:14:14.646] [Info][status][plugin:metric_vis] status changed from uninitialized to Green-ready
Log [13:14:14.655] [info][status][plugin:spymodes] status changed from uninitialized to Green-ready
Log [13:14:14.658] [info][status][plugin:statuspage] status changed from uninitialized to Green-ready
Log [13:14:14.661] [Info][status][plugin:elasticsearch] status changed from yellow to Green-kibana index ready
Log [13:14:14.663] [Info][status][plugin:table_vis] status changed from uninitialized to Green-ready
Log [13:14:14.675] [info][listening] Server running at http://0.0.0.0:5601




Kibana Dashboard Loading
Curl-l-O http://download.elastic.co/beats/dashboards/beats-dashboards-1.0.0-rc2.tar.gz
Tar xzvf beats-dashboards-1.0.0-rc2.tar.gz
CD beats-dashboards-1.0.0-rc2/
./load.sh


./load.sh http://192.168.0.58:9200
Curl
Loading Search Cache-transactions:
{"_index": ". Kibana", "_type": "Search", "_id": "Cache-transactions", "_version": 1, "_shards": {"Total": 2, "successful" : 1, "Failed": 0}, "created": true}
Loading Search Db-transactions:
{"_index": ". Kibana", "_type": "Search", "_id": "Db-transactions", "_version": 1, "_shards": {"Total": 2, "successful": 1, "Failed": 0}, "created": true}


The last command to test the index is as follows:
Curl 192.168.0.58:9200/_cat/indices
Yellow Open. Kibana 1 1 0 69kb 69kb
Yellow Open filebeat-2015.11.18 5 1 4109 0 2.9MB 2.9MB
Detailed configuration can refer to the configuration chapter
Http://blog.chinaunix.net/uid-25057421-id-5576272.html

http://www.bkjia.com/PHPjc/1081462.html www.bkjia.com true http://www.bkjia.com/PHPjc/1081462.html techarticle ELK Stack Latest version test an installation chapter we talk less, direct cut to the subject first see version filebeat1.0.0-rc2 logstash2.0.0-1 elasticsearch2.0.0 kibana4.2 so much content can be simple ...

