How to Install Elasticsearch, Logstash, Kibana and Filebeat (ELK Stack) on Ubuntu

preview_player
Показать описание
Install Elasticsearch, Logstash, Kibana and Filebeat

sudo apt update

sudo apt install elasticsearch

sudo systemctl start elasticsearch

sudo systemctl enable elasticsearch

curl -X GET "localhost:9200"

sudo apt install kibana

Sudo systemctl enable kibana

systemctl start kibana

Sudo apt install logstash

input {
beats {
port = 5044
}
}

output {
elasticsearch {
hosts = ["localhost:9200"]
manage_template = false
}
} else {
elasticsearch {
hosts = ["localhost:9200"]
manage_template = false
}
}
}

sudo systemctl start logstash

sudo systemctl enable logstash

sudo apt install filebeat

sudo filebeat modules enable system
sudo filebeat modules list

sudo filebeat setup --pipelines --modules system

Sudo filebeat modules enable system
sudo systemctl enable filebeat

  1. DevOps&Cloud World
  2. elk install ubuntu
  3. how to install elk stack on ubuntu 20.04
  4. how to install elk stack
  5. how to install elk on ubuntu
  6. how to install elk in linux
Комментарии
Автор

i have been stuck on this issue since 5days now " ./logstash --path.settings /etc/logstash -t " command it says " The given configuration is invalid. Reason: Expected one of [ \t\r\n], "#", "=>" at line 3, column 10 (byte 27) after input {
file {
path
" although i have checked it so many times it does not work please help me out
input {
beats {
port = 5044
}
}

serensiotic
Автор

why have'nt account manager administrator ?

yeu-bongda
Автор

Forgot to add ">" after "="
😉

ederferreira
Автор

The most useless video about ELK. Does author understand ELK installation? "Thanks" for waste my 20 minutes.

yourdima
Автор

I noticed a bug when running the command:
filebeat setup --pipelines --modules system

Solved here: filebeat setup --pipelines --modules system -M "system.syslog.enabled=true" -M "system.auth.enabled=true"

ederferreira