ELK服務啟動
- Elasticsearch配置啟動
- Kibana配置
-
- Logstash配置啟動
Elasticsearch配置啟動
官網下載下傳完windows版
遇到錯誤1:
the default discovery settings are unsuitable for production use; at least one of [discovery.seed_hosts, discovery.seed_providers, cluster.initial_master_nodes] must be configured
解決辦法:
在安裝目錄的config/elasticsearch.yml打開幾個注釋
1.node.name注釋 node.name: node-1
2.cluster.initial_master_nodes注釋
cluster.initial_master_nodes: [“node-1”, “node-2”]
3.添加外網通路配置
**
network:
host: 0.0.0.0
http:
port: 9200
cors:
enabled: true
allow-origin: “*”
**
加上配置後成功通路
Kibana配置
config/kibana.yml添加
**
i18n.locale: “zh-CN”
server.port: 5601
server.host: “0.0.0.0”
elasticsearch.hosts: [“http://http://10.167.197.128:9200/”]
kibana.index: “.kibana”
**
elasticsearch.url可能是老版配置
新版需要elasticsearch.hosts否則報錯:**
FATAL Error: [elasticsearch.url]: definition for this key is missing**
運作中
[“warning”,“elasticsearch”,“admin”],“pid”:4596,“message”:“No living connections”}]
導緻啟動不了
在kibana.yml添加
elasticsearch.ssl.verificationMode: “certificate”
Logstash配置啟動
同樣下載下傳windows安裝包
在 config 建立 logstash-test.conf
input {
tcp {
port => 5044
type => "test"
codec => json_lines
}
file {
path => "/mylogs/*.log"
start_position => beginning
}
}
output {
elasticsearch {
hosts => ["10.167.197.128:9200"]
index => "logstash-%{type}"
}
stdout { codec => rubydebug }
}
在bin目錄下啟動cmd用指令行:
./logstash.bat -f …/config/logstash-test.conf
啟動成功!