您的位置: 首页  >  文章  >  EFK收集messages线程

EFK收集messages线程

分类: 文章 2024-12-25 16:32:46

Server 192.168.132.7 :3G 2cpu(kibana filebeat logstash nginx)
Server 192.168.132.17 :1G (httpd-tools elasticsearch)
Server 192.168.132.24 :1G

全局环境jdk

rpm -ivh jdk-8u131-linux-x64_.rpm
EFK收集messages线程

三台虚拟机都做(zookeeper kafka)

  1. systemctl stop firewalld
  2. setenforce 0
  3. vim /etc/hosts
    EFK收集messages线程
  4. hostnamectl set-hostname kafka01-03
  5. ping kafka01-03

zookeeper

  1. tar zxf zookeeper-3.4.14.tar.gz
  2. mv zookeeper-3.4.14. /usr/local/zookeeper
  3. cd /usr/local/zookeeper/conf
  4. mv zoo_sample.cfg zoocfg
  5. vim zoo.cfg
    EFK收集messages线程
  6. mkdir -p /tmp/zookeeper
  7. echo ‘1’ >/tmp/zookeeper/myid (1.2.3)
  8. ./bin/zkServer.sh start (三台都做完再开始)
  9. EFK收集messages线程
  10. ./bin/zkServer.sh status .
  11. EFK收集messages线程
  12. (follower leader follower)
  13. #######################

kafka

  1. tar zxf kafka_2.11-2.2.0.tgz
  2. mv kafka_2.11-2.2.0 /usr/local/kafka
  3. cd /usr/local/kafka/config/
  4. vim server.properties
  5. EFK收集messages线程EFK收集messages线程EFK收集messages线程
  6. 启动 ./bin/kafka-server-start.sh -daemon config/server.properties
  7. 验证
  8. ./bin/kafka-topics.sh --create --zookeeper 192.168.132.7:2181 --replication-factor 2 --partitions 3 --topic msg
  9. EFK收集messages线程
  10. ./bin/kafka-topics.sh --list --zookeeper 192.168.132.7:2181
  11. EFK收集messages线程
  12. 生产 :./bin/kafka-console-producer.sh --broker-list 192.168.132.7:9092 --topic msg
  13. EFK收集messages线程
  14. 消费(192.168.132.17/192.168.132.24)
  15. ./bin/kafka-console-consumer.sh --bootstrap-server 192.168.132.7:9092 --topic msg --from-beginning
  16. EFK收集messages线程

FILEBEAT(192.168.132.7)

  1. 配置yum源法:vim /etc/yum.repo.d/filebeat.repo
  2. [filebeat-6.x]
    name=Elasticsearch repository for 6.x packages
    baseurl= https://artifacts.elastic.co/packages/6.x/yum
    gpgcheck=1
    gpgkey= https://artifacts.elastic.co/GPG-KEY-elasticsearch
    enabled=1
    autorefresh=1
    type=rpm-md
  3. yum -y install filebeat
  4. vim /etc/filebeat/filebeat.yml
  5. EFK收集messages线程
  6. systemctl enable filebeat
  7. systemctl start filebeat
  8. tailf /var/log/filebeat/filebeat
  9. 上传安装包 tar zxf filebeat-6.8.8-linux-x86_64.tar.gz
  10. https://www.elastic.co/cn/downloads/past-releases#filebeat
  11. EFK收集messages线程EFK收集messages线程
  12. vim tar zxf filebeat-6.8.8-linux-x86_64/filebeat.yml
  13. EFK收集messages线程
  14. ./filebeat -c filebeat.yml -e

ELASTICSEARCH(192.168.132.17)

  1. rpm -ivh elasticsearch-6.6.2.rpm
  2. vim /etc/elasticsearch/elasticsearch.yml
    EFK收集messages线程
  3. systemctl start elasticseach
  4. tailf /var/log/elasticsearch/ylm66.log
  5. ss -ntlp | grep java(yum -y install net tools :netstat)

LOGSTASH(192.168.132.7)

  1. rpm -ivh logstash-6.6.0.rpm
    vim /etc/logstash/confid/messages.conf
    EFK收集messages线程
    input {
    kafka {
    bootstrap_servers => [“192.168.132.24:9092,192.168.132.7:9092,192.168.132.17:9092”]
    group_id => “logstash”
    topics => “msg”
    consumer_threads => 5
    }

}
output {
elasticsearch {
hosts => “192.168.132.24:9200”
index => “messages-%{+YYYY.MM.dd}”
}
}
56. chmod -R 777 /var/log
57. systemctl restart logstash
58. tailf /var/log/logstash(tab)

KIBANA(192.168.132.7)

1. rpm -ivh kibana-6.6.2-x86_64.rpm
2. vim /etc/kibana/kibana.yml
EFK收集messages线程
3. systemctl start kibana
4. ss -ntlp | grep 5601
EFK收集messages线程

相关推荐