Redis教程
使用filebeat 收集日志到logstash 收集日志redis再到logstash到es
本文主要是介绍使用filebeat 收集日志到logstash 收集日志redis再到logstash到es,对大家解决编程问题具有一定的参考价值,需要的程序猿们随着小编来一起学习吧!
大型场合的工作流程图
filebeat -->logstash ---> redis ---> logstash --->es
工作环境:
需要两台logstash,
安装jdk8
[root@es-web1]# apt install openjdk-8-jdk -y
这里已经安装filebeat
配置filebeat(这里的输出只能写一个,如果之前已经存在有,需要注释,或者删除即可)
[root@es-web1]# vim /etc/filebeat/filebeat.yml
filebeat.inputs:
- type: log
enabled: True
paths:
- /apps/nginx/logs/error.log
fields:
app: nginx-errorlog
group: n223
- type: log
enabled: True
paths:
- /var/log/nginx/access.log
fields:
app: nginx-accesslog
group: n125
output.logstash:
hosts: ["172.31.2.107:5044"]
enabled: true
worker: 1
compression_level: 3
loadbalance: true
重启
root@long:~# systemctl restart filebeat
上传deb包,安装
[root@es-web1 src]# dpkg -i logstash-7.12.1-amd64.deb
配置logstash1
[root@es-web1]# vim /etc/logstash/conf.d/beats.conf
input {
beats {
port => 5044
codec => "json"
}
}
output {
if [fields][app] == "nginx-accesslog" {
redis {
data_type => "list"
key => "long-n178-nginx-accesslog"
host => "172.31.2.106"
port => "6379"
db => "3"
password => "123456"
}}
if [fields][app] == "nginx-errorlog" {
redis {
data_type => "list"
key => "long-n178-nginx-errorlog"
host => "172.31.2.106"
port => "6379"
db => "3"
password => "123456"
}}
}
重启
[root@es-web1]# systemctl restart logstash
检查redis是否获取到信息
[root@es-redis]# redis-cli -h 172.31.2.106 172.31.2.106:6379> auth 123456 172.31.2.106:6379[3]> select 3 172.31.2.106:6379[3]> keys * (empty list or set) 172.31.2.106:6379[3]> keys * 1) "long-n178-nginx-accesslog" 2) "long-n178-nginx-errorlog" 172.31.2.106:6379[3]> LPOP
配置logstash2
[root@logstash2 ~]# vim /etc/logstash/conf.d/logstash-to-es.conf
input {
redis {
data_type => "list"
key => "long-n178-nginx-accesslog"
host => "172.31.2.106"
port => "6379"
db => "3"
password => "123456"
}
redis {
data_type => "list"
key => "long-n178-nginx-errorlog"
host => "172.31.2.106"
port => "6379"
db => "3"
password => "123456"
}
}
output {
if [fields][app] == "nginx-accesslog" {
elasticsearch {
hosts => ["172.31.2.101:9200"]
index => "long-logstash-nginx-accesslog-%{+YYYY.MM.dd}"
}}
if [fields][app] == "nginx-errorlog" {
elasticsearch {
hosts => ["172.31.2.101:9200"]
index => "long-logstash-nginx-errorlog-%{+YYYY.MM.dd}"
}}
}
重启
[root@logstash2 ~]# systemctl restart logstash
添加到kibana
略
这篇关于使用filebeat 收集日志到logstash 收集日志redis再到logstash到es的文章就介绍到这儿,希望我们推荐的文章对大家有所帮助,也希望大家多多支持为之网!
您可能喜欢
-
阿里云Redis项目实战入门教程11-08
-
阿里云Redis资料:新手入门与初级使用指南11-08
-
阿里云Redis教程:新手入门及实用指南11-08
-
阿里云Redis学习入门:新手必读指南11-07
-
阿里云Redis学习入门:从零开始的操作指南11-07
-
阿里云Redis学习:初学者指南11-07
-
阿里云Redis入门教程:轻松搭建与使用指南11-06
-
Redis项目实战:新手入门教程11-02
-
Redis入门教程:轻松掌握数据存储与操作10-22
-
Redis缓存入门教程:快速掌握Redis缓存基础知识10-22
-
Redis入门指南:轻松掌握Redis基础操作10-22
-
Redis Quicklist 竟让内存占用狂降50%?10-22
-
Redis学习:从入门到初级应用教程10-17
-
Redis入门:新手必读教程10-12
-
阿里云Redis项目实战:新手入门教程09-26
栏目导航
