ELKstack - acehippo/slowmotion GitHub Wiki

ELK (ElasticSearch + LogStash + Kibana)

Kibana https://www.elastic.co/products/kibana

• Flexible analytics and visualization platform
• Real-time summary and charting of streaming data
• Intuitive interface for a variety of users
• Instant sharing and embedding of dashboards

logstash

• input plugin https://www.elastic.co/guide/en/logstash/current/input-plugins.html
  • socket, http, kafka, jdbc, ...
• filter plugin https://www.elastic.co/guide/en/logstash/current/filter-plugins.html
• outpu plugin https://www.elastic.co/guide/en/logstash/current/output-plugins.html
  • elasticsearch, socket, redis, kafka, ...
• config

input {
  file {
    codec => json
    path => "/home/slowmotion/elk/elastic-demo/data/*.log"
  }
}

filter{
  mutate {
    remove_field => [ "@version", "@timestamp", "host", "path" ]
  }
}

output{
  elasticsearch{
    hosts => ["10.251.54.155:9200"]
    index => "demo-kr-subway"
    document_type => "kr-subway"
  }
}