Changes between Version 4 and Version 5 of ELK

Timestamp:

03/01/21 03:03:59 (4 years ago)

Author:

krit

Comment:

--

ELK

@@ -24 +24 @@
 docker run --rm --name kibana --net=mynetwork -p 5601:5601 kibana:7.6.2  
 }}}
+
+== Query index/data/add/delete ==
+
+show index (DB) that use in ELK
+{{{
+curl -X GET localhost:9200/_cat/indices
+}}}
+
+When start logstash, we need to edit logstash.conf under pipeline/logstash.conf
+{{{
+#!sh
+[krit@mini bitnami-docker-logstash]$ cat pipeline/logstash.conf 
+input {
+  http {
+    host => "0.0.0.0" # default: 0.0.0.0
+    port => 31311 # default: 8080
+  }
+}
+
+filter {
+  csv {
+    separator => ","
+    columns => ["ID", "Moisture", "Temperature", "Light"]
+    convert => {
+      "Moisture" => "float"
+      "Temperature" => "float"
+      "Light" => "float"
+    }
+  }
+
+  mutate {
+    remove_field => ["host", "headers"]
+  }
+}
+
+output {
+  elasticsearch {
+    hosts => ["elasticsearch:9200"]
+    index => "logstash-2021.02.02-000001"
+  }
+}
+[krit@mini bitnami-docker-logstash]$ 
+}}}
+
+
+add data
+{{{
+curl -XPUT 'http://172.18.0.3:31311/twitter/tweet/1' -d 'abc,4.0,5.0,1.0' 
+}}}
+
+search and show all data
+{{{
+curl -X GET http://localhost:9200/logstash-2021.02.02-000001/_doc/_search?pretty=true
+}}}
+