elk5.6.0 centos7 及问题
elk5.6.0 centos7 及问题将elasticsearch,kibana,logstash三个压缩包放入/data/docker_images/elk 目录中
http://img.blog.csdn.net/20170920145737984?watermark/2/text/aHR0cDovL2Jsb2cuY3Nkbi5uZXQvanVzdDMwMTk=/font/5a6L5L2T/fontsize/400/fill/I0JBQkFCMA==/dissolve/70/gravity/Center
服务器ip:192.168.1.250
cd /data/docker_images/elk/
1.安装elasticsearch
本文根据elasticsearch-5.6.0.tar 压缩包安装
# tar -xvf elasticsearch-5.6.0.tar 解压
# cd elasticsearch-5.6.0 进入目录
# sh elasticsearch 启动
http://img.blog.csdn.net/20170920145810912?watermark/2/text/aHR0cDovL2Jsb2cuY3Nkbi5uZXQvanVzdDMwMTk=/font/5a6L5L2T/fontsize/400/fill/I0JBQkFCMA==/dissolve/70/gravity/Center
提示不能用root用户进行启动,
# groupadd elsearch 创建elsearch组
# useradd elsearch -g elsearch -p elsearch 创建elsearch用户
# su elsearch 切换elsearch用户
$ sh elasticsearch 启动
http://img.blog.csdn.net/20170920145955874?watermark/2/text/aHR0cDovL2Jsb2cuY3Nkbi5uZXQvanVzdDMwMTk=/font/5a6L5L2T/fontsize/400/fill/I0JBQkFCMA==/dissolve/70/gravity/Center
权限问题,
切换成root用户
# cd /data/docker_images/elk/ 进入目录
# chmod -R 777 elasticsearch-5.6.0 给予读写执行权限777
换回elsearch用户
$ sh elasticsearch 启动
显示下面的日志
http://img.blog.csdn.net/20170920150041300?watermark/2/text/aHR0cDovL2Jsb2cuY3Nkbi5uZXQvanVzdDMwMTk=/font/5a6L5L2T/fontsize/400/fill/I0JBQkFCMA==/dissolve/70/gravity/Center
测试:
# curl http://localhost:9200
http://img.blog.csdn.net/20170920150107579?watermark/2/text/aHR0cDovL2Jsb2cuY3Nkbi5uZXQvanVzdDMwMTk=/font/5a6L5L2T/fontsize/400/fill/I0JBQkFCMA==/dissolve/70/gravity/Center
提示elasticsearch基本信息则成功。
提供外部服务访问
切换回root用户
# vim elasticsearch.yml 编辑elasticsearch.yml文件
添加:network.host: 192.168.1.250
切回elsearch用户
$ sh elasticsearch 启动服务
http://img.blog.csdn.net/20170920150127389?watermark/2/text/aHR0cDovL2Jsb2cuY3Nkbi5uZXQvanVzdDMwMTk=/font/5a6L5L2T/fontsize/400/fill/I0JBQkFCMA==/dissolve/70/gravity/Center
切回root用户
# vim /etc/security/limits.conf 修改/etc/security/limits.conf
添加到文件
elsearch hard nofile 65536
elsearch soft nofile 65536
source /etc/security/limits.conf # vim /etc/sysctl.conf 修改/etc/sysctl.conf
添加到文件
vm.max_map_count=262144
# sysctl -p 执行生效vm.max_map_count=262144
切回elsearch用户
$ sh elasticsearch 执行
http://img.blog.csdn.net/20170920150148655?watermark/2/text/aHR0cDovL2Jsb2cuY3Nkbi5uZXQvanVzdDMwMTk=/font/5a6L5L2T/fontsize/400/fill/I0JBQkFCMA==/dissolve/70/gravity/Center
使用自己的机器访问
$ curl http://192.168.1.250:9200
http://img.blog.csdn.net/20170920150223360?watermark/2/text/aHR0cDovL2Jsb2cuY3Nkbi5uZXQvanVzdDMwMTk=/font/5a6L5L2T/fontsize/400/fill/I0JBQkFCMA==/dissolve/70/gravity/Center
启动成功。elasticsearch安装完成。
2.logstash安装
root用户
# cd /data/docker_images/elk/ 进入目录
# tar -xvf logstash-5.6.0.tar.gz 解压
# cd logstash-5.6.0 进入logstash目录
bin/logstash -e 'input{stdin{}}output{stdout{codec=>rubydebug}}’ 测试
http://img.blog.csdn.net/20170920150242058?watermark/2/text/aHR0cDovL2Jsb2cuY3Nkbi5uZXQvanVzdDMwMTk=/font/5a6L5L2T/fontsize/400/fill/I0JBQkFCMA==/dissolve/70/gravity/Center
3.kibana安装
root用户
# cd /data/docker_images/elk/ 进入目录
# tar -xvf kibana-5.6.0-linux-x86_64.tar 解压
# vim /data/docker_images/elk/kibana-5.6.0-linux-x86_64/config/kibana.yml 修改配置文件
添加配置
server.host: "192.168.1.250" 自己服务的ip地址
elasticsearch.url: "http://192.168.1.250:9200" elasticsearch服务访问地址
# cd kibana-5.6.0-linux-x86_64/bin/ 进入执行目录
# ./kibana 执行
http://img.blog.csdn.net/20170920150301967?watermark/2/text/aHR0cDovL2Jsb2cuY3Nkbi5uZXQvanVzdDMwMTk=/font/5a6L5L2T/fontsize/400/fill/I0JBQkFCMA==/dissolve/70/gravity/Center
成功。
页:
[1]