ELK for Enterpise

建議一定要買 license

 

Shield (for users 權限管理)

 

Alerting

 

Watcher 2.4.1

 

curl -XGET 'http://localhost:9200/_watcher/stats?pretty'


{
  "watcher_state" : "started",
  "watch_count" : 0,
  "execution_thread_pool" : {
    "queue_size" : 0,
    "max_size" : 0
  },
  "manually_stopped" : false
}

Windows agent 安裝

 

Resource Metric - 安裝 topbeat

 

 

Event logs - 安裝 winlogbeat

 

 

其他需單獨監控的 log files, 安裝 filebeat, 例如要傳 iislog

 

註: 在 kibana 端可直接 import dashboard json 檔

http://slides.com/ming-derwang/deck-34-35

https://log4analyticsltd.hackpad.com/-ELK-agent-Topbeat-lG4EMVbNLft

https://www.elastic.co/guide/en/beats/libbeat/current/load-kibana-dashboards.html

https://log4analyticsltd.hackpad.com/-ELK-filebeat-3lBOWrvLvic

import dashboards

//Kibana import dashboard JSON files.
//On ELK (default ES running on localhost)

curl -L -O http://download.elastic.co/beats/dashboards/beats-dashboards-1.3.1.zip
unzip beats-dashboards-1.3.1.zip
cd beats-dashboards-1.3.1/
./load.sh

ELK for Enterpise

By Ming-der Wang

Made with Slides.com

ELK for Enterpise

  • 1,144

More from Ming-der Wang