Sidehistorik
...
| Object | Comment / Link | Status | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| ELK Stack | An excellent Guide for Ubuntu 14.04 is at https://www.digitalocean.com/community/tutorials/how-to-install-elasticsearch-logstash-and-kibana-elk-stack-on-ubuntu-14-04 |
| |||||||||
| TopBeat | https://www.digitalocean.com/community/tutorials/how-to-gather-infrastructure-metrics-with-topbeat-and-elk-on-ubuntu-14-04 |
| |||||||||
| PacketBeat | https://z0z0.me/monitor-your-servers-with-elasticsearch-2-x-and-beats-and-display-it-in-kibana/ |
| |||||||||
| GeoIP Support | https://www.digitalocean.com/community/tutorials/how-to-map-user-location-with-geoip-and-elk-elasticsearch-logstash-and-kibana |
Gave som field challenges, and I had to delete the filebeat index. | |||||||||
| Tomcat Log Parsing | https://blog.lanyonm.org/articles/2014/01/12/logstash-multiline-tomcat-log-parsing.html |
|
Tips
| Tip |
|---|
Make sure the server time is correct for all servers This actually gave me a problem where logstash => ElasticSearch did not work |
as in use ...
Sample filebeat config for my Confluence Server
| Kodeblok |
|---|
paths:
- /var/log/auth.log
- /var/log/syslog
document_type: syslog
input_type: log
-
paths:
- /var/log/apache2/www.mos-eisley.dk-*.log
document_type: apache
input_type: log
-
paths:
- /data/www/Fordor.log
- /data/www/Baghus.log
document_type: camfileslog
input_type: log |
Sample filebeat config for my Alfresco Server
...