How to start with Elastic ELK Stack

Today I'm going to present you an ELK - Elasticsearch stack solution and how to start with it :) Checkout :) Elastic-Logo

S0-E20/E30 :)

Elasticsearch - what is it?

Elasticsearch is a tool - or rather a stack of tools called ELK which combines at least 3 apps: Elasticsearch, Logstash and Kibana.

Logstash is just a propagator of data to searcher-elasticsearch which is visualised within Kibana :) That's a big shortcut of what ELK stack is.

Details and information about that are widely spread all over the internet, just check firstly here - at documentation

Elasticsearch ELK Stack with docker.

Elasticsearch

Based on tutorial there is an easy docker-run command for elasticsearch:

docker run -p 9200:9200 -p 9300:9300 --name elasticsearch -e "discovery.type=single-node" docker.elastic.co/elasticsearch/elasticsearch:6.2.2

Logstash

docker pull docker.elastic.co/logstash/logstash:6.2.2
docker pull docker.elastic.co/logstash/logstash-oss:6.2.2

Without any volumens and configuration:

docker run --rm -it --link elasticsearch:localhost docker.elastic.co/logstash/logstash:6.2.2

And with only one config file:

docker run --rm -it -v ~/settings/logstash.yml:/usr/share/logstash/config/logstash.yml docker.elastic.co/logstash/logstash:6.2.2

Kibana

Run without configuration (just basic):

docker pull docker.elastic.co/kibana/kibana:6.2.2
docker run --rm -it --link elasticsearch:localhost -p 5601:5601 docker.elastic.co/kibana/kibana:6.2.2

A Bonus!

I've decided to make a simple github repo which intend is to use it as a starter for anyone looking into ELK first time.

Enjoy it :)

Acknowledgements

Thanks!

That's it :) Comment, share or don't :)

If you have any suggestions what I should blog about in the next articles - please give me a hint :)

See you tomorrow! Cheers!

Comments

comments powered by Disqus