ins and config

Download and install Filebeat



curl -L -O https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-7.12.0-amd64.deb
sudo dpkg -i filebeat-7.12.0-amd64.deb

Edit the configuration

Modify /etc/filebeat/filebeat.yml to set the connection information:

output.elasticsearch:
  hosts: ["<es_url>"]
  username: "elastic"
  password: "<password>"
setup.kibana:
  host: "<kibana_url>"

#可能要加这个配置
setup.ilm.overwrite: true

#type: log 那一节 
  enabled: true


Where <password> is the password of the elastic user, <es_url> is the URL of Elasticsearch, and <kibana_url> is the URL of Kibana.

Enable and configure the nginx module

sudo filebeat modules enable nginx

Modify the settings in the /etc/filebeat/modules.d/nginx.yml file.

可能要打开 填写这个目录 

vim /etc/filebeat/modules.d/nginx.yml
   #var.paths:
    var.paths: ["/var/log/nginx/error.log*"]

Start Filebeat

The setup command loads the Kibana dashboards. If the dashboards are already set up, omit this command.

sudo filebeat setup
sudo service filebeat start

Module status

Module status  右边的 check data 按键  -- > Nginx logs dashboard

systemctl daemon-reload

Filebeat nginx log

目录

ins and config

Download and install Filebeat

Edit the configuration

Enable and configure the nginx module

Start Filebeat

Module status

see also

导航菜单

个人工具

名字空间

变种

视图

更多

搜索

导航

我的导航

工具