http://elk-docker.readthedocs.io/
you have to adjust permanently the max_map_count parameter:
sysctl -w vm.max_map_count=262144
(sysctl - configure kernel parameters at runtime)
ls /proc/sys/vm to get list of available parameters
sudo vi /etc/sysctl.conf
vm.max_map_count=262144
try starting the container like this:
sudo docker run -p 5601:5601 -p 9200:9200 -p 5044:5044 -it --name elk sebp/elk
if it fails with this error:
waiting for Elasticsearch to be up (30/30)
Couln't start Elasticsearch. Exiting.
try allowing more time:
sudo docker run -e ES_CONNECT_RETRY=300 -p 5601:5601 -p 9200:9200 -p 5044:5044 -it --name elk sebp/elk
(see https://docs.docker.com/engine/reference/commandline/run/#set-environment-variables--e---env---env-file )
then
http://127.0.0.1:5601/app/kibana KIBANA (you have to wait 1 minute for Kibana to come up)
http://127.0.0.1:9200/ Elasticsearch JSON
to create dummy entry:
docker exec -it elk /bin/bash
/opt/logstash/bin/logstash --path.data /tmp/logstash/data -e 'input { stdin { } } output { elasticsearch { hosts => ["localhost"] } }'
this is a dummy entry
this is a dummy entry2
CTRL-C
Kibana logs : less /var/log/kibana/kibana5.log
Elasticsearch logs : less /var/log/elasticsearch/elasticsearch.log
Logstash logs: less /var/log/logstash/logstash-plain.log
tail -f /var/log/elasticsearch/elasticsearch.log /var/log/logstash/logstash-plain.log /var/log/kibana/kibana5.log
docker network create -d bridge elknet
good practical presentation of ELK:
skip to main |
skip to sidebar
Anything about Java, WebLogic, OSB, Linux etc.... this is my logbook of a navigation in the IT Technology ocean.
No comments:
Post a Comment