副标题#e#
# rpm –import https://artifacts.elastic.co/GPG-KEY-elasticsearch
# vim /etc/yum.repos.d/kibana.repo
=====================================================
snippet.bash
[kibana-6.x]
name=Elasticsearch repository for 6.x packages
baseurl=https://artifacts.elastic.co/packages/6.x/yum
gpgcheck=1
gpgkey=https://artifacts.elastic.co/GPG-KEY-elasticsearch
enabled=1
autorefresh=1
type=rpm-md
=====================================================
# yum install kibana
# vim /etc/kibana/kibana.yml
=====================================================
server.host: "kibana服务器ip"
elasticsearch.hosts: ["服务器IP:9200"]
#如果通过反向代理访问,则还需要添加如下配置。路径具体值视情况而定
server.basePath: "/kibana"
2、下载汉化包并复制到指定目录
wget https://codeload.github.com/anbai-inc/Kibana_Hanization/zip/master
unzip master
cp -r Kibana_Hanization-master/translations/ /usr/share/kibana/src/legacy/core_plugins/kibana/
#修改语言配置
#vim /etc/kibana/kibana.yml
======================================
i18n.locale: "zh_CN"
======================================
3、重启服务
service kibana restart
三、FileBeat
Filebeat隶属于Beats家族。目前Beats家族包含六种工具:
Packetbeat(搜集网络流量数据)
Metricbeat(搜集系统、进程和文件系统级别的 CPU 和内存使用情况等数据)
Filebeat(搜集文件数据)
Winlogbeat(搜集 Windows 事件日志数据)
Auditbeat( 轻量型审计日志采集器)
Heartbeat(轻量级服务器健康采集器)
1、部署
# rpm –import https://artifacts.elastic.co/GPG-KEY-elasticsearch
# vim /etc/yum.repos.d/filebeat.repo
==================================================
snippet.bash
[filebeat-6.x]
name=Elasticsearch repository for 6.x packages
baseurl=https://artifacts.elastic.co/packages/6.x/yum
gpgcheck=1
gpgkey=https://artifacts.elastic.co/GPG-KEY-elasticsearch
enabled=1
autorefresh=1
type=rpm-md
==================================================
# yum install filebeat
2、配置
/etc/filebeat/filebeat.yml
filebeat.inputs:
# Each – is an input. Most options can be set at the input level, so
# you can use different inputs for various configurations.
# Below are the input specific configurations.
– type: log
# Change to true to enable this input configuration.
enabled: true
# Paths that should be crawled and fetched. Glob based paths.
paths:
– d:/ams_logs/*.log
encoding: gbk
# 输出配置
output.elasticsearch:
#p#副标题#e#
# Array of hosts to connect to.
hosts: ["ES服务器IP:9200"]
3、重启服务
service filebeat restart