|
|
Posted on 2/1/2021 2:46:20 PM
|
|
|
|
Log System (1) Windows Installation ELK 7.10.2 Tutorial
When there are too many systems, the system is deployed in a distributed manner, and the system is split into microservices, a unified log system is particularly important, otherwise, it is impossible for us to log in to each server to view the corresponding log files.
Logs mainly include system logs, application logs, and security logs. System O&M and developers can use logs to understand server software and hardware information, check errors during configuration, and cause errors. Frequent analysis of logs provides insight into server load, performance, and security, allowing timely action to correct errors.
Often, logs are stored scattered across different devices. If you manage dozens or hundreds of servers, you're still using the traditional method of logging in to each machine in turn. Doesn't this feel cumbersome and inefficient?
At this time, it is necessary to set up a log center, and all systems push log information to this log center to facilitate us to troubleshoot problems in time.
Log Center
ELK:It consists of three open-source tools: ElasticSearch (ES), Logstash, and kibana. Its features include: distributed, zero-configuration, auto-discovery, index auto-sharding, index replica mechanism, restful style interface, multiple data sources, auto-search payload, etc.
Features: Open source, free
Splunk:Use Splunk to collect, index and leverage fast, mobile computer data generated by all applications, servers and devices. Using Splunking to process computer data allows you to resolve issues and investigate security incidents in minutes.
Features: Enterprise version charges, difficult to get started.
Exceptionless:Native. A set of open-source log collection centers developed on the .NET platform supports hosting or self-deployment, and there are also some very simple APMs in the new version, such as dead chain and time-consuming.
Features: Hosting fees, clear and easy to understand interface, and most importantly. Net and open source
Seq:Seq is a log server that runs on a single machine. Your application sends structured events through a framework like Serilog.
Features: Multiple query methods - Support querying in SQL expressions, as well as C#, ==, !=, <, <=, built-in StartsWith(), EndsWith(), IndexOf() and Contains(), and support full-text search. Charged, not open source system, so the free version features will be castrated.
Windows Installation ELK 7.10.2 Tutorial
First, the computer needs to install the Java environment, as follows:
C:\Users\itsvse_nuc>java -version
java version "1.8.0_211"
Java(TM) SE Runtime Environment (build 1.8.0_211-b12)
Java HotSpot(TM) 64-Bit Server VM (build 25.211-b12, mixed mode)
Download Address:The hyperlink login is visible.
Download :elasticsearch-7.10.2-windows-x86_64.zip, kibana-7.10.2-windows-x86_64.zip, logstash-7.10.2-windows-x86_64.zip, close to 900M
Install elasticsearch-7.10.2
Unzip the elasticsearch-7.10.2-windows-x86_64.zip file, execute it under the bin directory, and install it as a service, as follows:
{
"name" : "DESKTOP-C76AMDM",
"cluster_name" : "elasticsearch",
"cluster_uuid" : "g5yrfnSXS6CVusCV5XUXMA",
"version" : {
"number" : "7.10.2",
"build_flavor" : "default",
"build_type" : "zip",
"build_hash" : "747e1cc71def077253878a59143c1f785afa92b9",
"build_date" : "2021-01-13T00:42:12.435326Z",
"build_snapshot" : false,
"lucene_version" : "8.7.0",
"minimum_wire_compatibility_version" : "6.8.0",
"minimum_index_compatibility_version" : "6.0.0-beta1"
},
"tagline" : "You Know, for Search"
}
Logstash actually has nothing to install, he is responsible for log input, output, and filtering, and only needs to start the logstash.bat script under the bin directory.
Install kibana-7.10.2-windows-x86_64
Kibana loads configuration files by default from the program root directory /config/kibana.yml.
kibana.yml The configuration is as follows:
Configuration parameter reference:The hyperlink login is visible.
Then launch kibana.bat below the bin directory.
You can also install kibana as a Windows service.
Finally, access the dashboard address:The hyperlink login is visible.
(End)
|
Previous:the default discovery settings are unsuitable for production use...Next:Upload, update, add, and delete files using SVN
|
Landlord|
Posted on 2/1/2021 5:55:06 PM
|
Posted on 7/10/2021 3:25:36 PM