ELK 使用 metricbeat监控数据

|-----------------|------------|--------|
| IP | 功能 | 版本 |
| 192.168.140.153 | elk-1 | 8.13.4 |
| 192.168.140.153 | metricbeat | 8.13.4 |
| 192.168.140.156 | elk-2 | 8.13.4 |
| 192.168.140.156 | metricbeat | 8.13.4 |
| 192.168.140.159 | logstash | 8.13.4 |
| 192.168.140.159 | kibana | 8.13.4 |

一、安装ELK

参考文档:

https://download.csdn.net/download/weixin_44295677/89374143?spm=1001.2014.3001.5503https://download.csdn.net/download/weixin_44295677/89374143?spm=1001.2014.3001.5503

二、安装metricbeat(elastic所在服务器都需要执行)

1、下载metricbeat

可以跟据自己需要选择安装方式(该文档使用tar包安装)

2、解压
bash 复制代码
tar -zxvf metricbeat-8.13.4-linux-x86_64.tar.gz
mv metricbeat-8.13.4 /opt/metricbeat
3、开启elasticsearch-xpack模块
bash 复制代码
cd /opt/metricbeat
ln -s /opt/metricbeat/metricbeat /usr/bin/metricbeat
metricbeat modules enable elasticsearch-xpack
4、修改配置文件
bash 复制代码
vi /opt/metricbeat/modules.d/elasticsearch-xpack.yml
# 修改如下
- module: elasticsearch
  xpack.enabled: true
  period: 10s
  hosts: ["https://192.168.140.153:9200"]
  username: "elastic"
  password: "password"
  ssl.enabled: true
  ssl.certificate_authorities: ["/opt/es/config/certs/http_ca.crt"]


vi /opt/metricbeat/metricbeat.yml
# =================================== Kibana ===================================
setup.kibana:
  host: "192.168.140.153:5601"
  protocol: "https"
  ssl.certificate_authorities: ["/opt/metricbeat/certs/kibana-server.crt"]
  ssl.verification_mode: "none"
  ssl.certificate: "/opt/metricbeat/certs/kibana-server.crt"
  ssl.key: "/opt/metricbeat/certs/kibana-server.key"

# ---------------------------- Elasticsearch Output ----------------------------
output.elasticsearch:
  hosts: ["192.168.140.153:9200"]
  preset: balanced
  protocol: "https"
  username: "elastic"
  password: "introcks"
  ssl.enabled: true
  ssl.certificate_authorities: ["/opt/es/config/certs/http_ca.crt"]
5、检测配置文件格式
bash 复制代码
[root@localhost metricbeat]# metricbeat test config
Config OK
[root@localhost metricbeat]# metricbeat test output
elasticsearch: https://192.168.140.153:9200...
  parse url... OK
  connection...
    parse host... OK
    dns lookup... OK
    addresses: 192.168.140.153
    dial up... OK
  TLS...
    security: server's certificate chain verification is enabled
    handshake... OK
    TLS version: TLSv1.3
    dial up... OK
  talk to server... OK
  version: 8.13.4
6、编写启动脚本
bash 复制代码
[root@localhost metricbeat]# vi /etc/systemd/system/metricbeat.service
[Unit]
Description=Metricbeat service
After=network.target

[Service]
Type=simple
User=root
Group=root
ExecStart=/opt/metricbeat/metricbeat -c /opt/metricbeat/metricbeat.yml
Restart=always
LimitNOFILE=65535

[Install]
WantedBy=multi-user.target
7、启动服务
bash 复制代码
systemctl daemon-reload
systemctl start metricbeat.service
systemctl enable metricbeat.service

8、测试

相关推荐
刘立军18 分钟前
内网的服务如何能在公网使用?
运维
飞询1 小时前
docker 部署 sftp
运维·docker
LH_R1 天前
OneTerm开源堡垒机实战(四):访问授权与安全管控
运维·后端·安全
Raymond运维1 天前
MariaDB源码编译安装(二)
运维·数据库·mariadb
JuiceFS2 天前
从 MLPerf Storage v2.0 看 AI 训练中的存储性能与扩展能力
运维·后端
chen9452 天前
mysql 3节点mgr集群部署
运维·后端
LH_R2 天前
OneTerm开源堡垒机实战(三):功能扩展与效率提升
运维·后端·安全
dessler2 天前
Hadoop HDFS-高可用集群部署
linux·运维·hdfs
少妇的美梦3 天前
logstash教程
运维
chen9453 天前
k8s集群部署vector日志采集器
运维