This repository was create to learn more about logging monitoring and elastic stack. The ELK Stack are great tools for centralize logs of machines.
This pipeline is still beign edited.
| Application | Ports |
|---|---|
| Elasticsearch | 9200 |
| Kibana | 5601 |
| Logstash | 5044 normally, but you define input. |
| Beats | It's just a client with data output. |
Beats > Elasticsearch > Kibana.
$ cat /etc/elasticsearch/elasticsearch.yml | egrep -v "#.*|^$"
cluster.name: labteste
path.data: /var/lib/elasticsearch
path.logs: /var/log/elasticsearch
network.host: 0.0.0.0$ cat /etc/filebeat/filebeat.yml | egrep -v "#.*|^$"
filebeat.inputs:
filebeat.config.modules:
path: ${path.config}/modules.d/*.yml
reload.enabled: false
setup.dashboards.enabled: true
setup.kibana:
host: "localhost:5601
output.elasticsearch:
hosts: ["localhost:9200"]$ filebeat modules enable nginx #active logs check of nginx.
$ filebeat setup -e #configure dashboard of module.