Install elk7 with login password for elk (practice brother tutorial), use logstash built-in grok regular analysis to analyze nginx and httpd - Code World

Install elk7 with login password for elk (practice brother tutorial), use logstash built-in grok regular analysis to analyze nginx and httpd

Others 2021-01-24 20:10:17 views: null

The elk version is 7.7 The system version is centos7, see the tutorial: https://blog.csdn.net/yuezhilangniao/article/details/112691680

Two confs, one is tomcat log

input{
	file {
        path => ["/home/tomcat8/tomcat_8005/logs/catalina.out"]
        start_position => "beginning"
	    }
	file {
        path => ["/home/tomcat8/tomcat_8006/logs/catalina.out"]
        start_position => "beginning"
	    }
}

filter{
#[2020-12-31 15:10:00.660][INFO][cn.com.hyundai.mms.component.ons.producer.ONSProducerHandler]消息内容：TopicMessage{Properties:{KEYS=MessageKey}messageTag='insToSaaS', receiptHandle='null'}
grok {
		match => { 
		"message" => " \[%{DATA:timestamp}\]\[%{WORD:verb}\]\[%{URIPROTO:request}\]
		" }
	}
}


output{
	elasticsearch {
    		hosts => ["http://10.69.15.56:9200"]
    		user => "elastic"
    		password => "123456"
    		index => "hml_8089_0506_catalina_out-%{+YYYY.MM.dd}"
	  }

}

One is httpd log

input {
    file {
        path => ["/var/log/httpd/access_log"]
        start_position => "beginning"
    }
 }

filter {
	 grok {
     	   	match => { "message" => "%{COMMONAPACHELOG:apachelog}" }
        	add_field => [ "response", "%{NUMBER:response}" ]
    }

}

output {
	
	 elasticsearch {
    		hosts => ["http://10.69.15.56:9200"]
    		user => "elastic"
    		password => "123456"
    		index => "sjghttpd_access-%{+YYYY.MM.dd}"
  }
}

The built-in httpd regularity of grok comes from the article: https://blog.csdn.net/aca_jingru/article/details/44647519

Guess you like

Origin blog.csdn.net/yuezhilangniao/article/details/112691593

Install elk7 with login password for elk (practice brother tutorial), use logstash built-in grok regular analysis to analyze nginx and httpd

Instale elk7 con la contraseña de inicio de sesión para elk (practique el tutorial de Brother), use el análisis regular de grok integrado en logstash para analizar nginx y httpd

Instale o elk7 com a senha de login para o elk (tutorial do irmão de prática), use a análise regular do grok integrado do logstash para analisar o nginx e o httpd

The practice of ELK builds elk7 with account password

Установите elk7 с паролем для входа в elk (практическое руководство для брата), используйте встроенный в logstash регулярный анализ Grok для анализа nginx и httpd

2021-01-04 ELK's first test kabala grok-debug tool test built-in grok regular

Regular in logstash grok

Installieren Sie elk7 mit dem Anmeldekennwort für elk (Übungsbruder-Tutorial) und analysieren Sie Nginx und httpd mithilfe der in logstash integrierten Grok-Analyse

ELK - the basic use of LogStash

Use regular expressions to match java log in logstash grok plugin

ELK experiment (4) Install logstash

Installez elk7 avec le mot de passe de connexion pour elk (tutoriel pratique Brother), utilisez l'analyse régulière grok intégrée de logstash pour analyser nginx et httpd

ELK's Logstash installation and use

ELK7.4-Lostash Grok formatted log Nginx

Logstash custom grok regular matching rules

ELK log management platform using a unified Title III -logstash grok plug

Logstash: ELK stacks using API analysis

ElasticSearch, Logstash and Kiabana deploy ELK nginx log

Use elk+redis to build nginx log analysis platform

ELK analysis nginx logs (2)

Logstash uses grok to filter nginx logs (2)

grok debugger regular analytical nginx logs

Detailed explanation of the use of log system ELK (2)--Logstash installation and use

elk container Practice (Nginx log statistics)

Configure ELK log analysis system (elasticsearch, logstash, kibana installation and deployment)

ELK log analysis platform (2)-logstash data collection

Ubuntu builds ELK log analysis system (Elasticsearch+Logstash+Kibana)

ELK--Logstash installation

ELK -- Logstash installation and configuration

ELK redis configure logstash

Recommended

Ranking

error: (-215:Assertion failed) !_img.empty() in function ‘cv::imwrite‘

Database migration between Navicat servers

Minimum number of rotation of the array: Array

balenaEtcher for mac (make a boot disk software) v1.5.67

Custom processing serialization and deserialization in jackson

Mu-en-mask system development software

Mastering Regular Expressions

Find mileage Java--

Web pages can not directly concern the public micro-channel number how to do? A key to arouse public concern number of micro-channel solutions

[CodeForces - 739B] Alyona and a tree Tree + [difference] + bipartite

Daily

More

2024-05-12(28)

2024-05-11(32)

2024-05-10(34)

2024-05-09(32)

2024-05-08(18)

2024-05-07(34)

2024-05-06(6)

2024-05-05(0)

2024-05-04(18)

2024-05-03(8)