Sidehistorik
...
Tip |
---|
Make sure the server time is correct for all servers as in use NTP. I have divided stuff a bit, please read: Logstash - Tips and Troubleshooting
|
Delete all values in an index
Kodeblok |
---|
root@elkserver:/# curl -XDELETE http://localhost:9200/filebeat* Elasticsearch - Tips and Troubleshooting
|
Sample filebeat.yml config for my Confluence Server
...
Kodeblok |
---|
paths: - /var/log/auth.log - /var/log/syslog document_type: syslog input_type: log - paths: - /var/log/apache2/alfresco.mos-eisley.dk-*.log - /var/log/apache2/elk.mos-eisley.dk-*.log document_type: apache input_type: log - paths: - /var/log/pingkaf.txt document_type: pinglog input_type: log |
Indexes
Kodeblok |
---|
root@elkserver:/# curl localhost:9200/_cat/indices
yellow open filebeat-2016.03.30 5 1 7 0 78.9kb 78.9kb
yellow open logstash-2016.03.28 5 1 1 0 12.7kb 12.7kb
yellow open filebeat-2016.03.31 5 1 10 0 112.2kb 112.2kb
yellow open filebeat-2016.03.21 5 1 1 0 11.9kb 11.9kb
yellow open filebeat-2016.03.22 5 1 1 0 11.9kb 11.9kb
yellow open filebeat-2016.04.01 5 1 6 0 67.6kb 67.6kb
yellow open filebeat-2016.03.23 5 1 1 0 11.9kb 11.9kb
yellow open filebeat-2016.04.02 5 1 15 0 167.5kb 167.5kb
yellow open logstash-2013.12.11 5 1 1 0 11.3kb 11.3kb
yellow open filebeat-2016.03.13 5 1 1 0 11.9kb 11.9kb
yellow open filebeat-2016.04.03 5 1 4718 0 5mb 5mb
yellow open filebeat-2016.03.24 5 1 1 0 12.1kb 12.1kb
yellow open filebeat-2016.03.25 5 1 1 0 11.9kb 11.9kb
yellow open filebeat-2016.03.26 5 1 2 0 23kb 23kb
yellow open packetbeat-2016.04.03 5 1 115546 0 78.3mb 78.3mb
yellow open .kibana 1 1 115 0 86.3kb 86.3kb
yellow open topbeat-2016.04.03 5 1 198026 0 75.9mb 75.9mb
yellow open filebeat-2016.03.27 5 1 2 0 23kb 23kb
yellow open filebeat-2016.03.28 5 1 4 0 45.3kb 45.3kb
yellow open filebeat-2016.03.29 5 1 2 0 23kb 23kb
yellow open filebeat-2016.03.18 5 1 2 0 23.1kb 23.1kb
root@elkserver:/# |
...
Other Stuff:
http://www.slideshare.net/aca_it/monitor-your-atlassian-stack-like-the-nsa
...