Getting started with ES Logstash data synchronization

Others 2021-03-19 12:08:44 views: null

1 Introduction

Official website address: https://www.elastic.co/cn/logstash

Logstash is a powerful tool that can be integrated with various deployments. It provides a large number of plug-ins that can help you parse, enrich, convert and buffer data from various sources. If your data requires additional processing that is not available in Beats, you need to add Logstash to the deployment.

Logstash is a very important part of the Elastic stack, but it is not only used by Elasticsearch. It can introduce a wide variety of data sources. Logstash can help us analyze, enrich, and convert data with its own Filter.

Finally, it can output its own data to various data storage locations, including Elasticsearch.

To put it simply, Logstash is a data flow engine:

  • It is an open source streaming ETL engine for data logistics
  • Establish a data flow pipeline in minutes
  • With horizontal scalability and resilience, with adaptive buffering
  • Unknowable data source
  • Plug-in ecosystem with more than 200 integrations and processors
  • Use Elastic Stack to monitor and manage deployments

We can control the automatic synchronization of data by setting the auto-increment id primary key or time, and the time is used logstashfor identification.

  • id: Assuming that there are 1000 pieces of data now, Logstatsh will perform a synchronization after identification. After synchronization, the id will be recorded as 1000. After the database adds new data, the id will always accumulate, logstash will have a scheduled task, and it is found that there is an id greater than 1000. , The increment is added to es.
  • Time: In the same way, at the beginning of synchronizing 1000 pieces of data, each piece of data has a field called time. After the first synchronization is completed, record this time, and perform time comparison during the next synchronization. If it exceeds this time, then Synchronization can be done, here you can synchronize new data, or modify metadata, because the time change of the same data will be recognized, but the id will not.

2 working principle

Official website address: https://www.elastic.co/guide/en/logstash/current/index.html

Insert picture description here

Logstash consists of 3 main parts: inputs, filters and outputs. You must define the configuration of these processes to use Logstash, although not every one is required. In some cases, we can even have no filters. In the filter part, it can analyze, enrich, process, etc. the data of the data source.

3 Related information

  • The blog post is not easy, everyone who has worked so hard to pay attention and praise, thank you

Guess you like

Origin blog.csdn.net/qq_15769939/article/details/114995419
Recommended
The number of MaxKB GitHub Stars, an open source knowledge base question and answer system based on large language models, exceeded 5,000!
Ranking
Getting the basic concepts of ROS + catkin Profile
Spring Learning (2) --- Assembling Beans in the IoC Container
js to get the src attribute of the image regularly
STM32 is based on CubeIDE and HAL library basics entry study notes: Bluetooth WIFI STM32 connects to Alibaba Cloud
Short video learning - 3, pandas simple use of pivot_table
Print directory of project configuration log, output log
Understand the difference between vi and vim in Linux in 3 minutes
1 + x certificate Web front-end development HTML5 special exercises
mangodb save and insert the difference
7-1 Family tree processing (50 points) (binary tree solution)
Daily
More
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)

Code World

© 2018 codetd.com