- README.md - this document
- README_workshop.md - workshop description
- README_mapping.md - mapping examples and how to use them/work with them
- README_api_usage.md - small examples about API usage, index recovery, backups, ..., curator
-
1x Fluentd
NEED TO BE RUN FIRST
see how to run this stack -
not working correctly under load, but as docker logger it can be used
-
logging containers outputs to ELK
-
index
platform*
-
5x ELK in cluster (2x master node, 3x data nodes)
-
exposed ports:
- 920x / 930x
-
http://localhost:9200/_plugin/head/
- for fast cluster state verification and mapping setup
-
1x Kibana
-
exposed port: 5601
-
consulate installed + example
-
sense and marvel plugin installed
-
1x Logstash for easy sample data upload
- exposed ports:
- 5000 - json filter
- 5001 - raw
-
you can use .raw field for not_analyzed data
-
index:
logstash*
- Start stack
$ ./_start.sh
- Import sample logs
$ nc localhost 5000 < samples/logfile.log
- Stop stack and remove artefacts
$ ./_stop.sh