Skip to content

Files

Latest commit

aa009d6 · Apr 2, 2018

History

History

5.6.3

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
Jan 28, 2018
Jan 12, 2018
Jan 12, 2018
Jan 12, 2018
Jan 12, 2018
Jan 31, 2018
Jan 28, 2018
Jan 28, 2018
Apr 2, 2018
Jan 28, 2018
Apr 2, 2018
Jan 28, 2018
Jan 28, 2018

README.md

elasticstack

ELK : elasticsearch + logstash + kibana

Forwarder : filebeat port 5044

Prerequisite

  • OS : Centos 7.x
  • Docker engine > 1.12.x
  • Docker-compose > 1.11.x

Clone GIT folder under your user home

cd ~
git clone https://github.com/easonlau02/elasticstack.git

Change config if you are using docker-for-mac under MAC

  • Replace <your_es_host> with your running host for below config
~/elasticstack/5.6.3/docker-compose.yml.docker_for_mac

Startup ELK service at one machine

  • For linux user
cd ~/elaticstack/5.6.3
docker-compose -f docker-compose.yml.linux up -d
  • For Mac user
cd ~/elasticstack/5.6.3
docker-compose -f docker-compose.yml.docker_for_mac up -d

Access kibana via <kibanahost>:5601, you can see below screenshot

alt text alt text

You can see Unable to fetch mapping. Do you have indices match..., caused by no log feed.

HERE IS IMPORTANT!!!!

We managed all config file in images eason02/elk-data-volume:5.6.3, so if you need to change/add config for below folder.

~/elasticstack/5.6.3/elasticsearch/config/
~/elasticstack/5.6.3/logstash/config/
~/elasticstack/5.6.3/kibana/config/

And then run below related scripts to build new config image eason02/elk-data-volume:5.6.3.

cd ~/elasticstack/5.6.3/
chmod +x build_data_volumes_for_elk.sh
./build_data_volumes_for_elk.sh

Restart elk service to take effect.

  • For linux user:
cd ~/elasticstack/5.6.3/
docker-compose -f docker-compose.yml.linux restart
  • For Mac user:
cd ~/elasticstack/5.6.3/
docker-compose -f docker-compose.yml.docker_for_mac restart