filebeat-elasticsearch(docker)+kibana 7.6.2(docker)日志采集并展现(centos7)

最新推荐文章于 2024-05-19 17:28:28 发布
最新推荐文章于 2024-05-19 17:28:28 发布
阅读量669 收藏
点赞数 1
分类专栏: 解决办法 文章标签: elasticsearch docker kibana
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/weixin_42868663/article/details/120741865
版权

filebeat-elasticsearch(docker)+kibana 7.6.2(docker)日志采集并展现(centos7)

一、docker安装elasticsearch+kibana

1)下载ealastic search和kibana

docker pull elasticsearch:7.6.2
docker pull kibana:7.6.2

(2)配置

mkdir -p /mydata/elasticsearch/config
mkdir -p /mydata/elasticsearch/data 
echo "http.host: 0.0.0.0" >/mydata/elasticsearch/config/elasticsearch.yml 
chmod -R 777 /mydata/elasticsearch/

(3)启动elasticsearch

elasticsearch:

docker run --name elasticsearch -p 9200:9200 -p 9300:9300 -e  "discovery.type=single-node"  -e ES_JAVA_OPTS="-Xms64m -Xmx256m"  -v /mydata/elasticsearch/config/elasticsearch.yml:/usr/share/elasticsearch/config/elasticsearch.yml  -v /mydata/elasticsearch/data:/usr/share/elasticsearch/data  -v  /mydata/elasticsearch/plugins:/usr/share/elasticsearch/plugins  -d elasticsearch:7.6.2

(4)启动 kibana

kibana:

docker run --name kibana -e ELASTICSEARCH_HOSTS=http://172.17.127.219:9200 -p 5601:5601 -d kibana:7.6.2

(5)汉化 kibana

Kibana中文汉化支持

Kibana从6.6.0版本开始支持中文

参考:https://github.com/anbai-inc/Kibana_Hanization

汉化方法如下:

以现行最新版本7.2.0为例,测试机器为Windows 10

打开\kibana-7.2.0-windows-x86_64\config\kibana.yml

找到i18n.locale,如果没找到自行添加如下文本

Copy

i18n.locale: "zh-CN"

启动Kibana,应该就可以查看到中文界面。如果没有正确汉化,请找到目录\kibana-7.2.0-windows-x86_64\x-pack\plugins\translations\translations,该目录下应存在汉化包,一个Json文件 zh-CN.json

二、安装filebeat

下载tar版本

curl -L -O https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-7.6.2-linux-x86_64.tar.gz
tar xzvf filebeat-7.6.2-linux-x86_64.tar.gz

[root@localhost filebeat]# ls
filebeat-7.6.2-linux-x86_64  filebeat-7.6.2-linux-x86_64.tar.gz
[root@localhost filebeat]#

三、修改filebeat.yml

filebeat.inputs:
- type: log
  enabled: true
  paths:
   - /root/filebeat/filebeat-7.6.2-linux-x86_64/apache-daily-access.log
  fields_under_root: true
  multiline.pattern: '^[[0-9]{4}-[0-9]{2}-[0-9]{2}'
  multiline.negate: true
  multiline.match: after

filebeat.config.modules:
  path: ${path.config}/modules.d/*.yml
  reload.enabled: false
setup.template.name: "filebeat-admin"
setup.template.pattern: "filebeat-admin*"
setup.template.fields: "fields.yml"
setup.template.overwrite: false


output.elasticsearch:
  hosts: ["localhost:9200"]
  indices:
    - index: "filebeat-admin-%{+yyyy.MM.dd}"

读取日志文件apache-daily-access.log,也可以使用其它的(在解压后的filebeat-7.6.2-linux-x86_64下自行建立):

2021-10-11 14:48:24.244 [http-nio-8889-exec-1] [DEBUG] c.f.m.mapper.ContentUGCMapper.upDateNii.debug [traceId:0a3b5f39e76129f7] [SpanId:0a3b5f39e76129f7] ==>  Preparing: update nova_invitation_info info set FKey5='1',weighting=? where info.id=? 
2021-10-11 14:48:24.245 [http-nio-8889-exec-1] [DEBUG] c.f.m.mapper.ContentUGCMapper.upDateNii.debug [traceId:0a3b5f39e76129f7] [SpanId:0a3b5f39e76129f7] ==> Parameters: 78.0(Double), 391(String)
2021-10-11 14:48:24.247 [ForkJoinPool.commonPool-worker-1] [DEBUG] c.f.m.mapper.ContentUGCMapper.getDzCount.debug [traceId:] [SpanId:] <==      Total: 1
2021-10-11 14:48:24.247 [ForkJoinPool.commonPool-worker-1] [DEBUG] c.f.m.mapper.ContentUGCMapper.getPlCount.debug [traceId:] [SpanId:] ==>  Preparing: SELECT count(info.FID) as FCommentCnt from comment_details_info info INNER JOIN comment_info comm on comm.FID = info.FCommentInfoId INNER join nova_invitation_info ni on comm.FContentId = ni.id and ni.FIsDelete=0 and ni.bus_type='1' where info.FIsDelete=0 and info.FStatus=1 and comm.FCommentType = 8500 and ni.id=? 
2021-10-11 14:48:24.248 [ForkJoinPool.commonPool-worker-1] [DEBUG] c.f.m.mapper.ContentUGCMapper.getPlCount.debug [traceId:] [SpanId:] ==> Parameters: 504(String)
2021-10-11 14:48:24.248 [ForkJoinPool.commonPool-worker-2] [DEBUG] c.f.m.m.ContentUGCMapper.getPicCount.debug [traceId:] [SpanId:] <==      Total: 1
2021-10-11 14:48:24.248 [ForkJoinPool.commonPool-worker-2] [DEBUG] c.f.m.mapper.ContentUGCMapper.getDzCount.debug [traceId:] [SpanId:] ==>  Preparing: SELECT IFNULL(sum(dz.fCnt),0) dz from nova_invitation_like_info dz LEFT JOIN nova_invitation_info info on dz.inv_id = info.id and dz.FTouchCode != '0' where info.id=? and info.FIsDelete=0 and info.bus_type='1' 
2021-10-11 14:48:24.248 [ForkJoinPool.commonPool-worker-2] [DEBUG] c.f.m.mapper.ContentUGCMapper.getDzCount.debug [traceId:] [SpanId:] ==> Parameters: 459(String)
2021-10-11 14:48:24.249 [ForkJoinPool.commonPool-worker-4] [ERROR] druid.sql.Statement.statementLogError [traceId:] [SpanId:] {conn-10006, pstmt-20224} execute error. insert  into content_ugc_info(nii_id,weighting,basic_score,subject_score,characters_score,pic_score,praise_score,comment_score)  VALUES (?,?,?,?,?,?,?,?)
java.sql.SQLIntegrityConstraintViolationException: Duplicate entry '368' for key 'nii_id'
	at com.mysql.cj.jdbc.exceptions.SQLError.createSQLException(SQLError.java:117)
	at com.mysql.cj.jdbc.exceptions.SQLError.createSQLException(SQLError.java:97)
	at com.mysql.cj.jdbc.exceptions.SQLExceptionsMapping.translateException(SQLExceptionsMapping.java:122)
	at com.mysql.cj.jdbc.ClientPreparedStatement.executeInternal(ClientPreparedStatement.java:955)
	at com.mysql.cj.jdbc.ClientPreparedStatement.execute(ClientPreparedStatement.java:372)
	at com.alibaba.druid.filter.FilterChainImpl.preparedStatement_execute(FilterChainImpl.java:3461)
	at com.alibaba.druid.filter.FilterEventAdapter.preparedStatement_execute(FilterEventAdapter.java:440)
	at com.alibaba.druid.filter.FilterChainImpl.preparedStatement_execute(FilterChainImpl.java:3459)
	at com.alibaba.druid.filter.FilterEventAdapter.preparedStatement_execute(FilterEventAdapter.java:440)
	at com.alibaba.druid.filter.FilterChainImpl.preparedStatement_execute(FilterChainImpl.java:3459)
	at com.alibaba.druid.proxy.jdbc.PreparedStatementProxyImpl.execute(PreparedStatementProxyImpl.java:167)
	at com.alibaba.druid.pool.DruidPooledPreparedStatement.execute(DruidPooledPreparedStatement.java:497)
	at sun.reflect.GeneratedMethodAccessor193.invoke(Unknown Source)
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.lang.reflect.Method.invoke(Method.java:498)
	at org.apache.ibatis.logging.jdbc.PreparedStatementLogger.invoke(PreparedStatementLogger.java:59)
	at com.sun.proxy.$Proxy348.execute(Unknown Source)
	at org.apache.ibatis.executor.statement.PreparedStatementHandler.update(PreparedStatementHandler.java:47)
	at org.apache.ibatis.executor.statement.RoutingStatementHandler.update(RoutingStatementHandler.java:74)
	at org.apache.ibatis.executor.SimpleExecutor.doUpdate(SimpleExecutor.java:50)
	at org.apache.ibatis.executor.BaseExecutor.update(BaseExecutor.java:117)
	at org.apache.ibatis.executor.CachingExecutor.update(CachingExecutor.java:76)
	at sun.reflect.GeneratedMethodAccessor208.invoke(Unknown Source)
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.lang.reflect.Method.invoke(Method.java:498)
	at org.apache.ibatis.plugin.Plugin.invoke(Plugin.java:63)
	at com.sun.proxy.$Proxy346.update(Unknown Source)
	at org.apache.ibatis.session.defaults.DefaultSqlSession.update(DefaultSqlSession.java:197)
	at sun.reflect.GeneratedMethodAccessor207.invoke(Unknown Source)
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.lang.reflect.Method.invoke(Method.java:498)
	at org.mybatis.spring.SqlSessionTemplate$SqlSessionInterceptor.invoke(SqlSessionTemplate.java:433)
	at com.sun.proxy.$Proxy182.update(Unknown Source)
	at org.mybatis.spring.SqlSessionTemplate.update(SqlSessionTemplate.java:294)
	at org.apache.ibatis.binding.MapperMethod.execute(MapperMethod.java:67)
	at org.apache.ibatis.binding.MapperProxy.invoke(MapperProxy.java:58)
	at com.sun.proxy.$Proxy253.insertUgc(Unknown Source)
	at com.faw.membercenter.service.ContentUGCService.updateOrAdd(ContentUGCService.java:298)
	at com.faw.membercenter.service.ContentUGCService.upDataJf(ContentUGCService.java:189)
	at com.faw.membercenter.service.ContentUGCService.lambda$getAllComputeWeight$0(ContentUGCService.java:48)
	at java.util.stream.ForEachOps$ForEachOp$OfRef.accept(ForEachOps.java:184)
	at java.util.ArrayList$ArrayListSpliterator.forEachRemaining(ArrayList.java:1382)
	at java.util.stream.AbstractPipeline.copyInto(AbstractPipeline.java:481)
	at java.util.stream.ForEachOps$ForEachTask.compute(ForEachOps.java:291)
	at java.util.concurrent.CountedCompleter.exec(CountedCompleter.java:731)
	at java.util.concurrent.ForkJoinTask.doExec(ForkJoinTask.java:289)
	at java.util.concurrent.ForkJoinPool$WorkQueue.runTask(ForkJoinPool.java:1056)
	at java.util.concurrent.ForkJoinPool.runWorker(ForkJoinPool.java:1692)
	at java.util.concurrent.ForkJoinWorkerThread.run(ForkJoinWorkerThread.java:157)
2021-10-11 14:48:24.250 [ForkJoinPool.commonPool-worker-4] [DEBUG] c.f.m.mapper.ContentUGCMapper.upDateNii.debug [traceId:] [SpanId:] ==>  Preparing: update nova_invitation_info info set FKey5='1',weighting=? where info.id=? 
2021-10-11 14:48:24.250 [ForkJoinPool.commonPool-worker-4] [DEBUG] c.f.m.mapper.ContentUGCMapper.upDateNii.debug [traceId:] [SpanId:] ==> Parameters: 78.0(Double), 368(String)

2021-10-11 14:48:24.277 [ForkJoinPool.commonPool-worker-6] [DEBUG] c.f.m.mapper.ContentUGCMapper.getPlCount.debug [traceId:] [SpanId:] <==      Total: 1
2021-10-11 14:48:24.277 [ForkJoinPool.commonPool-worker-7] [ERROR] druid.sql.Statement.statementLogError [traceId:] [SpanId:] {conn-10005, pstmt-20229} execute error. insert  into content_ugc_info(nii_id,weighting,basic_score,subject_score,characters_score,pic_score,praise_score,comment_score)  VALUES (?,?,?,?,?,?,?,?)
java.sql.SQLIntegrityConstraintViolationException: Duplicate entry '42' for key 'nii_id'
	at com.mysql.cj.jdbc.exceptions.SQLError.createSQLException(SQLError.java:117)
	at com.mysql.cj.jdbc.exceptions.SQLError.createSQLException(SQLError.java:97)
	at com.mysql.cj.jdbc.exceptions.SQLExceptionsMapping.translateException(SQLExceptionsMapping.java:122)
	at com.mysql.cj.jdbc.ClientPreparedStatement.executeInternal(ClientPreparedStatement.java:955)
	at com.mysql.cj.jdbc.ClientPreparedStatement.execute(ClientPreparedStatement.java:372)
	at com.alibaba.druid.filter.FilterChainImpl.preparedStatement_execute(FilterChainImpl.java:3461)
	at com.alibaba.druid.filter.FilterEventAdapter.preparedStatement_execute(FilterEventAdapter.java:440)
	at com.alibaba.druid.filter.FilterChainImpl.preparedStatement_execute(FilterChainImpl.java:3459)
	at com.alibaba.druid.filter.FilterEventAdapter.preparedStatement_execute(FilterEventAdapter.java:440)
	at com.alibaba.druid.filter.FilterChainImpl.preparedStatement_execute(FilterChainImpl.java:3459)
	at com.alibaba.druid.proxy.jdbc.PreparedStatementProxyImpl.execute(PreparedStatementProxyImpl.java:167)
	at com.alibaba.druid.pool.DruidPooledPreparedStatement.execute(DruidPooledPreparedStatement.java:497)
	at sun.reflect.GeneratedMethodAccessor193.invoke(Unknown Source)
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.lang.reflect.Method.invoke(Method.java:498)
	at org.apache.ibatis.logging.jdbc.PreparedStatementLogger.invoke(PreparedStatementLogger.java:59)
	at com.sun.proxy.$Proxy348.execute(Unknown Source)
	at org.apache.ibatis.executor.statement.PreparedStatementHandler.update(PreparedStatementHandler.java:47)
	at org.apache.ibatis.executor.statement.RoutingStatementHandler.update(RoutingStatementHandler.java:74)
	at org.apache.ibatis.executor.SimpleExecutor.doUpdate(SimpleExecutor.java:50)
	at org.apache.ibatis.executor.BaseExecutor.update(BaseExecutor.java:117)
	at org.apache.ibatis.executor.CachingExecutor.update(CachingExecutor.java:76)
	at sun.reflect.GeneratedMethodAccessor208.invoke(Unknown Source)
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.lang.reflect.Method.invoke(Method.java:498)
	at org.apache.ibatis.plugin.Plugin.invoke(Plugin.java:63)
	at com.sun.proxy.$Proxy346.update(Unknown Source)
	at org.apache.ibatis.session.defaults.DefaultSqlSession.update(DefaultSqlSession.java:197)
	at sun.reflect.GeneratedMethodAccessor207.invoke(Unknown Source)
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
	at java.lang.reflect.Method.invoke(Method.java:498)
	at org.mybatis.spring.SqlSessionTemplate$SqlSessionInterceptor.invoke(SqlSessionTemplate.java:433)
	at com.sun.proxy.$Proxy182.update(Unknown Source)
	at org.mybatis.spring.SqlSessionTemplate.update(SqlSessionTemplate.java:294)
	at org.apache.ibatis.binding.MapperMethod.execute(MapperMethod.java:67)
	at org.apache.ibatis.binding.MapperProxy.invoke(MapperProxy.java:58)
	at com.sun.proxy.$Proxy253.insertUgc(Unknown Source)
	at com.faw.membercenter.service.ContentUGCService.updateOrAdd(ContentUGCService.java:298)
	at com.faw.membercenter.service.ContentUGCService.upDataJf(ContentUGCService.java:189)
	at com.faw.membercenter.service.ContentUGCService.lambda$getAllComputeWeight$0(ContentUGCService.java:48)
	at java.util.stream.ForEachOps$ForEachOp$OfRef.accept(ForEachOps.java:184)
	at java.util.ArrayList$ArrayListSpliterator.forEachRemaining(ArrayList.java:1382)
	at java.util.stream.AbstractPipeline.copyInto(AbstractPipeline.java:481)
	at java.util.stream.ForEachOps$ForEachTask.compute(ForEachOps.java:291)
	at java.util.concurrent.CountedCompleter.exec(CountedCompleter.java:731)
	at java.util.concurrent.ForkJoinTask.doExec(ForkJoinTask.java:289)
	at java.util.concurrent.ForkJoinPool$WorkQueue.execLocalTasks(ForkJoinPool.java:1040)
	at java.util.concurrent.ForkJoinPool$WorkQueue.runTask(ForkJoinPool.java:1058)
	at java.util.concurrent.ForkJoinPool.runWorker(ForkJoinPool.java:1692)
	at java.util.concurrent.ForkJoinWorkerThread.run(ForkJoinWorkerThread.java:157)
2021-10-11 14:48:24.278 [ForkJoinPool.commonPool-worker-6] [DEBUG] c.f.m.mapper.ContentUGCMapper.insertUgc.debug [traceId:] [SpanId:] ==>  Preparing: insert into content_ugc_info(nii_id,weighting,basic_score,subject_score,characters_score,pic_score,praise_score,comment_score) VALUES (?,?,?,?,?,?,?,?) 
catalog.CatalogConsulClient.getCatalogServices(CatalogConsulClient.java:141)

四、运行filebeat

[root@localhost filebeat-7.6.2-linux-x86_64]# ./filebeat -e
五、在kibana中查看数据:

1.建立索引视图:找到filebeat中配置的filebeat-admin*,点next step完成,点击discover查看收集到的日志信息
在这里插入图片描述
在这里插入图片描述
在这里插入图片描述
在这里插入图片描述

你刘大爷
关注
  • 1
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
Filebeat 采集 Docker 日志
叶康铭的博客
10-20 5026
由于容器的特性,在容器重新创建后日志会废弃掉,如何通过持久化和中心化的处理容器日志变成一个棘手的问题,如何通过 Elastic Stack 进行一站式的数据采集,数据清洗,数据落地,数据可视化,让数据发挥真正的价值呢? 架构设计 涉及到 Elastic Stack 中 Filebeat 是用于采集 Docker 相关的日志Elasticsearch 是用于对于数据落地存储和搜索的引擎, Kibana 是用于对数据可视化的工具。 在 Docker 中容器的日志是存储在/var/lib/docker/c.
使用Filebeat收集线上docker日志
weixin_43886546的博客
06-05 6458
Filebeat官网:https://www.elastic.co/guide/en/beats/filebeat/index.html 警告:这里一定要检查好自己安装的filebeat是哪个版本。然后在官网对应版本下,进行参数设置;避免踩坑。 一、概述 Filebeat是Beat成员之一,基于Go语言开发,并且无需添加任何依赖,Logstash 和 filebeat都具有日志收集的功能...
由mysql的for update语句引发的代码报错
yunxuantu的博客
09-11 3748
2018-09-11 09:50:24.619 [localhost-startStop-1] INFO org.springframework.ui.velocity.SpringResourceLoader - SpringResourceLoader for Velocity: using resource loader [Root WebApplicationContext: star...
若依微服务项目01 - 报错解决:Communications link failure
最新发布
全栈技术分享,项目分享,资料分享
05-19 195
在每次重启数据库的时候,登录系统会报错。第一次会出现用户名不存在等情况,后台会报错,前端依旧可以进入,或者等待时间5分钟,期间不做任何操作,重新登录,这个问题就会复现,复现这个问题最快的方法就是重启数据库。目前可以通过降低druid版本来解决这个问题。在根目录下的pom.xml文件中将。
通过filebeat实现对docker服务的通用日志收集
夜星
04-24 1311
通过filebeat实现对docker容器的日志收集,并按照服务进行切割展示,以便多主机实例集中展示。
filebeat收集docker日志
weixin_45262858的博客
06-11 1098
10.0.0.51 elasticsaerch 10.0.0.0.52 docker 容器 1.安装elasticsearch(51) 1.1下载,上传,安装jdk rpm -ivh jdk-8u181-linux-x64.rpm 1.2下载,上传,安装elasticsearch rpm -ivh elasticsearch-6.6.0.rpm 1.3自定义配置文件 cp /etc/elasticsearch/elasticsearch.yml /opt/ cat >/etc/elastics
在CentOS上集成filebeat+ELK docker收集日志
WF13160592060的博客
11-01 2964
架构: Dcker 安装 docker 需要Linux Kernels 不低于 3.10 并且是 64-bit 机器。 更新yum(centos低版本更新,高版本可以不用更新),避免安装失败。 更新完成 使用yum安装docker 安装完成 检查是否安装成功       Docker启动成功           5
基于docker-compose构建filebeat + Logstash +Elasticsearch+ kibana日志系统
04-30
基于docker-compose构建filebeat + Logstash +Elasticsearch+ kibana日志系统 对nginx日志进行正则切割字段。 https://www.jianshu.com/p/f7927591d530
filebeat+elasticSearch+kibana 学习体会
07-31
就是学习这三个的一些心得体会,适合初学者,适合给他人讲解使用!
centos7使用docker-compose安装es(包括IK分词器扩展)+kibana
04-13
环境:centos7.7_x86_64 1、虚拟机内存要稍大些至少2G 2、es需要修改linux宿主机的一些参数 设置vm.max_map_count=262144 vim /etc/sysctl.conf vm.max_map_count=262144 不重启, 直接生效当前的命令 ...
sample-filebeat-docker-logging:使用DockerFileBeatElasticsearch进行强大的日志记录
05-13
示例文件拍子-docker-日志记录 使用DockerFileBeatElasticsearch进行强大的日志记录
filebeat-7.6.2-windows-x86_64.zip
04-18
filebeat最新Windows版:filebeat-7.6.2-windows-x86_64.zip。elastic家族其他产品(含windows、linux版)最新版亦可从我的资源页获取https://download.csdn.net/user/u010887744/uploads,
filebeat-7.6.2-darwin-x86_64.tar.gz
04-18
filebeat最新MAC版:filebeat-7.6.2-darwin-x86_64.tar.gz。elastic家族其他产品(含windows、linux版)最新版亦可从我的资源页获取https://download.csdn.net/user/u010887744/uploads,
filebeat-7.6.2-linux-x86_64.tar.gz
04-18
filebeat最新linux版:filebeat-7.6.2-linux-x86_64.tar.gz。elastic家族其他产品(含windows、linux版)最新版亦可从我的资源页获取https://download.csdn.net/user/u010887744/uploads,
Centos7 docker-compose安装ELK+Filebeat.zip
10-16
Centos7 docker-compose安装ELK+Filebeat.zip 存放这里,让大家下载快捷一点
elasticsearch-6.8.1+kibana-6.8.1+ logstash-6.3.0
11-26
ElasticsearchKibanaLogstash 是 ELK(ElasticsearchLogstash、Kibana)堆栈的三大核心组件,它们共同构成了一个强大的日志管理和分析解决方案。ELK 堆栈在IT运维、故障排查、业务监控等领域有着广泛的应用...
Docker 搭建 ELK 日志系统,并通过 Kibana 查看日志
添砖加瓦
04-23 1227
Docker 搭建 ELK 日志系统,并通过 Kibana 查看日志 docker-compose.yml version: '3' services: elasticsearch: image: elasticsearch:7.7.0 #镜像 container_name: elasticsearch #定义容器名称 restart: always #开机启动,失败也会一直重启 environment: - "cluster.name=elastics
linux centos7创建filebeat进行日志采集-配合es
自行车的博客
02-02 2999
可以很好收集日志,还是挺好用的 文章目录安装es安装Kibana安装filebeat 安装es linux centos7安装elasticsearch 安装Kibana linux centos7安装Kibana 安装filebeat url选择对应的版本 wget https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-7.16.3-linux-x86_64.tar.gz 到对应的目录解压 tar -zxvf filebeat.
Docker引擎不同的日志驱动配置以及通过Filebeat采集容器日志的两种解决方案
weixin_42467874的博客
02-06 1767
我们可以使用 docker logs 命令查看 Docker 容器内部应用程序运行时所产生的日志。使用 docker logs 命令可以免除首先进入 Docker 容器,再打开应用程序的日志文件的过程。docker logs 会监控容器中操作系统的标准输出设备(STDOUT),一旦 STDOUT 有数据产生,就会将这些数据传输到另一个“设备”中,该 Docker 的驱动被称为“日志驱动”(Logging Driver)
ELK日志归集 - 搭建及使用说明文档V1.0.docx
11-14
ELK日志归集 - 搭建及使用说明文档V1.0 Elastic Stack 提供 Beats 和 Logstash 套件来采集任何来源、任何格式的数据。其实Beats 和 Logstash的功能差不多,都能够与 Elasticsearch 产生协同作用,而且。 logstash比filebeat功能更强大一点,2个都使用是因为:Beats 是一个轻量级的采集器,支持从边缘机器向 Logstash 和 Elasticsearch 发送数据。考虑到 Logstash 占用系统资源较多,我们采用 Filebeat 来作为我们的日志采集器。并且这里采用kafka作为传输方式是为了避免堵塞和丢失,以实现日志的实时更新。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值