ELK: Difference between revisions
From artserver wiki
No edit summary |
No edit summary |
||
| Line 12: | Line 12: | ||
==Test ElsticSearch== | ==Test ElsticSearch== | ||
<code>curl --cacert /etc/elasticsearch/certs/http_ca.crt -u elastic http://localhost:9200</code> | <code>curl --cacert /etc/elasticsearch/certs/http_ca.crt -u elastic http://localhost:9200</code> | ||
=Project: analysing Apache server logs from another server= | |||
On remote: | |||
* FileBeat: Beats are lightweight agents that are installed on client hosts to collect different types of data for forwarding into the stack. | |||
On ELK stack machine: | |||
Revision as of 11:33, 26 September 2022
Installing ELK stack
Followed https://techviewleo.com/install-elastic-stack-elk-on-debian/ ports:
- elasticsearch: 9200
- logstash: 5044
- kibana: 5601
- filebeat
change elasticsearch JVM heap size to use only 1G in /etc/elasticsearch/jvm.options
-Xms1g -Xmx1g
Test ElsticSearch
curl --cacert /etc/elasticsearch/certs/http_ca.crt -u elastic http://localhost:9200
Project: analysing Apache server logs from another server
On remote:
- FileBeat: Beats are lightweight agents that are installed on client hosts to collect different types of data for forwarding into the stack.
On ELK stack machine:
