-
Docker搭建ELK
一、安装Elasticsearch
mkdir -p /home/qiang/data/elasticsearch/data mkdir -p /home/qiang/data/elasticsearch/logs chmod 777 /home/qiang/data/elasticsearch/data /home/qiang/data/elasticsearch/logs # 如迁移目录则授权 chown -R 1000:root /home/qiang/data/elasticsearch/data/- 1
- 2
- 3
- 4
- 5
version: '3' services: elasticsearch: image: elasticsearch:7.12.1 container_name: elasticsearch restart: always ports: - "9200:9200" volumes: - /home/qiang/data/elasticsearch/data:/usr/share/elasticsearch/data - /home/qiang/data/elasticsearch/logs:/usr/share/elasticsearch/logs environment: - "ES_JAVA_OPTS=-Xms256m -Xmx256m" - "discovery.type=single-node"- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
# 复制配置文件 mkdir -p /home/qiang/data/elasticsearch/conf docker cp elasticsearch:/usr/share/elasticsearch/config/elasticsearch.yml /home/qiang/data/elasticsearch/conf- 1
- 2
- 3
elasticsearch.yml
# 集群名称 cluster.name: my-application # 节点名称 node.name: node-1 # 是否可以成为master节点 node.master: true # 是否允许该节点存储数据,默认开启 node.data: true # 网络绑定 network.host: 0.0.0.0 # 设置对外服务的http端口 http.port: 9200 cluster.initial_master_nodes: ["node-1"] # 支持跨域访问 http.cors.enabled: true http.cors.allow-origin: "*" # 安全认证 xpack.security.enabled: false #http.cors.allow-headers: "Authorization"- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
version: "3" services: elasticsearch: container_name: elasticsearch hostname: elasticsearch image: elasticsearch:7.12.1 restart: always ports: - 9200:9200 volumes: - /home/qiang/data/elasticsearch/data:/usr/share/elasticsearch/data - /home/qiang/data/elasticsearch/logs:/usr/share/elasticsearch/logs - /home/qiang/data/elasticsearch/conf/elasticsearch.yml:/usr/share/elasticsearch/config/elasticsearch.yml environment: - "ES_JAVA_OPTS=-Xms256m -Xmx256m"- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
二、安装Logstash
version: '3' services: logstash: image: logstash:7.12.1 container_name: logstash restart: always ports: - "5044:5044" - "9600:9600" environment: - "LS_JAVA_OPTS=-Xms256m -Xmx256m"- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
# 创建目录 mkdir -p /home/qiang/data/logstash/config/ # 复制配置文件 docker cp logstash:/usr/share/logstash/config/logstash.yml /home/qiang/data/logstash/config/ docker cp logstash:/usr/share/logstash/config/logstash-sample.conf /home/qiang/data/logstash/config/logstash.conf- 1
- 2
- 3
- 4
- 5
- 6
logstash.yml
http.host: "0.0.0.0" xpack.monitoring.elasticsearch.hosts: [ "http://192.168.1.51:9200" ]- 1
- 2
logstash.conf
input { tcp { port => 5044 codec => json_lines } } output { # 输出到控制台 stdout { codec => rubydebug } elasticsearch { hosts => ["http://192.168.1.51:9200"] index => "logstash_%{+YYYY.MM.dd}" } }- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
有数据卷
version: '3' services: logstash: image: logstash:7.12.1 container_name: logstash restart: always ports: - "5044:5044" - "9600:9600" volumes: - /home/qiang/data/logstash/config/logstash.yml:/usr/share/logstash/config/logstash.yml - /home/qiang/data/logstash/config/logstash.conf:/usr/share/logstash/pipeline/logstash.conf environment: - "LS_JAVA_OPTS=-Xms256m -Xmx256m"- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
测试命令
# 进入容器 docker exec -it logstash bash # 输出到控制台 /usr/share/logstash/bin/logstash --path.data /usr/share/logstash/test -e 'input { stdin{} } output { stdout{ codec => rubydebug }}'- 1
- 2
- 3
- 4
# 输出到ES /usr/share/logstash/bin/logstash --path.data /usr/share/logstash/test -e 'input { stdin{} } output { elasticsearch {hosts => ["192.168.1.51:9200"] index => "logstash_%{+YYYY.MM.dd}" }}'- 1
- 2
# 输出到文件 /usr/share/logstash/bin/logstash --path.data /usr/share/logstash/test -e 'input { stdin{} } output { file { path => "/tmp/logstash_%{+YYYY.MM.dd}.log"}}'- 1
- 2
Springboot整合Logstash
pom.xml
<dependency> <groupId>net.logstash.logbackgroupId> <artifactId>logstash-logback-encoderartifactId> <version>7.0.1version> dependency>- 1
- 2
- 3
- 4
- 5
logback.xml
<configuration debug="false" scan="true" scanPeriod="30 seconds"> <property name="serviceName" value="logstash-service"/> <contextName>${serviceName}contextName> <appender name="console" class="ch.qos.logback.core.ConsoleAppender"> <encoder class="ch.qos.logback.classic.encoder.PatternLayoutEncoder"> <pattern>%red([%d{yyyy-MM-dd HH:mm:ss.SSS}]) %green([%contextName]) %highlight(%-5level) %boldMagenta(%logger{0}:%line) - %cyan(%msg%n) pattern> encoder> <filter class="ch.qos.logback.classic.filter.ThresholdFilter"> <level>INFOlevel> filter> appender> <appender name="logstash" class="net.logstash.logback.appender.LogstashTcpSocketAppender"> <destination>192.168.1.51:5044destination> <encoder class="net.logstash.logback.encoder.LoggingEventCompositeJsonEncoder"> <providers> <timestamp> <timeZone>UTCtimeZone> timestamp> <pattern> <pattern> { "date":"%d", "serviceName":"%contextName", "level":"%level", "thread":"%thread", "logger":"%logger{0}:%line", "log": "%msg" } pattern> pattern> providers> encoder> <filter class="ch.qos.logback.classic.filter.ThresholdFilter"> <level>INFOlevel> filter> appender> <root level="info"> <appender-ref ref="console"/> <appender-ref ref="logstash"/> root> configuration>- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
- 45
- 46
- 47
- 48
- 49
- 50
- 51
- 52
- 53
- 54
- 55
- 56
- 57
- 58
- 59
- 60
- 61
- 62
- 63
- 64
- 65
- 66
- 67
- 68
- 69
- 70
- 71
- 72
- 73
启动服务
收集到日志springboot -> logstash -> elasticsearch
三、安装Kibana
无数据卷
version: '3' services: kibana: image: kibana:7.12.1 container_name: kibana restart: always privileged: true ports: - "5601:5601" environment: - "ELASTICSEARCH_HOSTS=http://192.168.1.51:9200" - "I18N_LOCALE=zh-CN"- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
访问地址
# 复制配置文件 mkdir -p /home/qiang/data/kibana/ docker cp kibana:/usr/share/kibana/config/kibana.yml /home/qiang/data/kibana/- 1
- 2
- 3
kibana.yml
# # ** THIS IS AN AUTO-GENERATED FILE ** # # Default Kibana configuration for docker target server.name: kibana server.host: "0" server.basePath: "/kibana" elasticsearch.hosts: [ "http://elasticsearch:9200" ] monitoring.ui.container.elasticsearch.enabled: true- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
docker-compose.yaml
version: '3' services: kibana: image: kibana:7.12.1 container_name: kibana restart: always privileged: true ports: - "5601:5601" environment: - "ELASTICSEARCH_HOSTS=http://192.168.1.51:9200" - "I18N_LOCALE=zh-CN" volumes: - /home/qiang/data/kibana/kibana.yml:/usr/share/kibana/config/kibana.yml- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
nginx代理
location /kibana/ { proxy_pass http://192.168.1.51:5601; rewrite ^/elk/(.*)$ /$1 break; proxy_set_header X-Real-IP $remote_addr; proxy_set_header Host $host:$server_port; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_http_version 1.1; }- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
作者(Author):小强崽
来源(Source):https://www.wuduoqiang.com/archives/Docker搭建ELK
协议(License):署名-非商业性使用-相同方式共享 4.0 国际 (CC BY-NC-SA 4.0)
版权(Copyright):商业转载请联系作者获得授权,非商业转载请注明出处。 For commercial use, please contact the author for authorization. For non-commercial use, please indicate the source. -
相关阅读:
监控搭建-Prometheus
SpringBoot多环境启动方案
dns电脑服务器发生故障怎么修复
Hive 如何使用 Grouping Sets
DDD系列 实战一 应用设计案例 (golang)
CSS_背景属性
Linux: vi 编辑器
windows编译ollvm笔记
Docker的自定义镜像
一文讲解Linux内核内存管理架构
- 原文地址:https://blog.csdn.net/wdq875667601/article/details/126397132
