- Packetbeat<\/ul>\n<\/li>\n<\/ul>\n
- \n
- Elasticsearch<\/ul>\n<\/li>\n<\/ul>\n
<\/p>\n
- Kibana<\/ul>\n
\u4ea7\u54c1\u8bf4\u660e<\/h1>\n
“Packetbeat”\u662f\u7531elastic\u516c\u53f8\u63d0\u4f9b\u7684\u4e00\u79cd\u5305\u76d1\u63a7\u5de5\u5177\u3002
\n\u5b83\u662f”Beats”\u4ea7\u54c1\u7cfb\u5217\u4e2d\u7684\u4e00\u5458\uff0c\u5176\u4ed6\u8fd8\u6709”Filebeat”\u3001”Metricbeat”\u3001”Topbeat”\u548c”Winlogbeat”\u3002<\/p>\n“Elasticsearch”\u3001”Kibana”\u3082elastic\u793e\u306e\u30d7\u30ed\u30c0\u30af\u30c8\u3067\u3001”Elasticsearch”\u306f\u5168\u6587\u691c\u7d22\u30a8\u30f3\u30b8\u30f3\u3001”Kibana”\u306f\u30ed\u30b0\u53ef\u8996\u5316\u30c4\u30fc\u30eb\u3067\u3059\u3002<\/p>\n
https:\/\/www.elastic.co\/zh-cn\/products\/elasticsearch
\nhttps:\/\/www.elastic.co\/zh-cn\/products\/kibana<\/p>\n\u6784\u6210<\/h1>\n
![\"Packetbeat_\u69cb\u6210.png\"](\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d1dcd37434c4406c14548\/13-0.png\" "\\"\\"")
<\/div>\n\u84dd\u8272\u7bad\u5934\uff1aDNS\u67e5\u8be2\u3001\u54cd\u5e94\u901a\u4fe1
\n\u7ea2\u8272\u7bad\u5934\uff1aPacketbeat\u5c06\u65e5\u5fd7\u4f20\u8f93\u5230Elasticsearch\u901a\u4fe1
\n\u7eff\u8272\u7bad\u5934\uff1a\u5ba2\u6237\u7aefPC\u8bbf\u95eeKibana\uff08WebUI\uff09\u901a\u4fe1<\/p>\n\u25cfDNS \u670d\u52a1\u5668
\nCentOS 7.2
\nPacketbeat \u7248\u672c 1.2.3<\/p>\n\u25cf Elasticsearch\/Kibana \u670d\u52a1\u5668
\nCentOS 7.2 \u64cd\u4f5c\u7cfb\u7edf
\nElasticsearch \u7248\u672c 2.3.5
\nKibana \u7248\u672c 2.5.4<\/p>\n![\"Packetbeat_\u69cb\u6210_\u30df\u30e9\u30fc\u30dd\u30fc\u30c8.png\"](\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d1dcd37434c4406c14548\/17-0.png\" "\\"\\"")
<\/div>\n\u5b89\u88c5<\/h1>\n
\u30fb \u4eca\u56de\u306f\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u3066\u52d5\u4f5c\u3055\u305b\u308b\u3053\u3068\u3092\u76ee\u7684\u3068\u3057\u3066\u3044\u308b\u305f\u3081\u3001\u7d30\u304b\u306a\u30d1\u30e9\u30e1\u30fc\u30bf\u306e\u8abf\u6574\u306f\u5272\u611b\u3057\u3066\u3044\u307e\u3059\u3002\r\n\u30fb Firewalld\u306f\u505c\u6b62\u3055\u305b\u3066\u3044\u308b\u60f3\u5b9a\u3067\u3059\u3002\uff08systemctl stop firewalld\uff09\r\n<\/code><\/pre>\n\u7f51\u7edc\u5c01\u5305\u8ffd\u8e2a\u5668<\/h2>\n
\u5728\u201cDNS \u670d\u52a1\u5668\u201d\u4e0a\u6267\u884c\u4ee5\u4e0b\u547d\u4ee4\u3002<\/p>\n
sudo <\/span>yum install <\/span>libpcap\r\ncurl -L<\/span> -O<\/span> https:\/\/download.elastic.co\/beats\/packetbeat\/packetbeat-1.2.3-x86_64.rpm\r\nsudo <\/span>rpm -vi<\/span> packetbeat-1.2.3-x86_64.rpm\r\n<\/code><\/pre>\n\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u5b8c\u4e86\u5f8c\u3001\u4ee5\u4e0b\u306e\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb\u3092\u7de8\u96c6\u3057\u307e\u3059\u3002<\/p>\n
\/etc\/packetbeat\/packetbeat.yml\r\n<\/code><\/pre>\nProtocols\u30bb\u30af\u30b7\u30e7\u30f3\u3067\u3001\u201d ports: [53]\u201d\u304c\u30b3\u30e1\u30f3\u30c8\u30a2\u30a6\u30c8\u3055\u308c\u3066\u3044\u306a\u3044\u3053\u3068\u3092\u78ba\u8a8d\u3057\u307e\u3059\u3002
\n\u4eca\u56de\u306fDNS\u4ee5\u5916\u306e\u30ed\u30b0\u306f\u53d6\u5f97\u3057\u306a\u3044\u306e\u3067\u3001\u305d\u306e\u4ed6\u306e\u30dd\u30fc\u30c8\u756a\u53f7\u884c\u306f\u30b3\u30e1\u30f3\u30c8\u30a2\u30a6\u30c8\u3057\u307e\u3059\u3002
\n\u203bports: [80, 8080, 8000, 5000, 8002]\u7b49<\/p>\n<\u7565><\/span>\r\n############################# Protocols #######################################<\/span>\r\nprotocols<\/span>:<\/span>\r\n dns<\/span>:<\/span>\r\n # Configure the ports where to listen for DNS traffic. You can disable<\/span>\r\n # the DNS protocol by commenting out the list of ports.<\/span>\r\n ports<\/span>:<\/span> [<\/span>53<\/span>]<\/span>\r\n<\u7565><\/span>\r\n http<\/span>:<\/span>\r\n # Configure the ports where to listen for HTTP traffic. You can disable<\/span>\r\n # the HTTP protocol by commenting out the list of ports.<\/span>\r\n #ports: [80, 8080, 8000, 5000, 8002]<\/span>\r\n<\u7565><\/span>\r\n memcache<\/span>:<\/span>\r\n # Configure the ports where to listen for memcache traffic. You can disable<\/span>\r\n # the Memcache protocol by commenting out the list of ports.<\/span>\r\n #ports: [11211]<\/span>\r\n<\u7565><\/span>\r\n mysql<\/span>:<\/span>\r\n # Configure the ports where to listen for MySQL traffic. You can disable<\/span>\r\n # the MySQL protocol by commenting out the list of ports.<\/span>\r\n #ports: [3306]<\/span>\r\n\r\n pgsql<\/span>:<\/span>\r\n # Configure the ports where to listen for Pgsql traffic. You can disable<\/span>\r\n # the Pgsql protocol by commenting out the list of ports.<\/span>\r\n #ports: [5432]<\/span>\r\n\r\n redis<\/span>:<\/span>\r\n # Configure the ports where to listen for Redis traffic. You can disable<\/span>\r\n # the Redis protocol by commenting out the list of ports.<\/span>\r\n #ports: [6379]<\/span>\r\n\r\n thrift<\/span>:<\/span>\r\n # Configure the ports where to listen for Thrift-RPC traffic. You can disable<\/span>\r\n # the Thrift-RPC protocol by commenting out the list of ports.<\/span>\r\n #ports: [9090]<\/span>\r\n\r\n mongodb<\/span>:<\/span>\r\n # Configure the ports where to listen for MongoDB traffic. You can disable<\/span>\r\n # the MongoDB protocol by commenting out the list of ports.<\/span>\r\n #ports: [27017]<\/span>\r\n<\/code><\/pre>\n\u7136\u540e\uff0c\u5728Output\u90e8\u5206\u8fdb\u884c\u8bbe\u7f6e\u4ee5\u6307\u5b9a\u4fe1\u606f\u53d1\u9001\u5230\u76ee\u6807\u5730\uff08Elasticsearch\uff09\u3002
\n\u4f5c\u4e3a\u53d1\u9001\u76ee\u6807\uff0c\u586b\u5199Elasticsearch\/Kibana\u670d\u52a1\u5668\u7684IP\u5730\u5740\u3002<\/p>\n<\u7565><\/span>\r\n############################# Output ##########################################<\/span>\r\n\r\n# Configure what outputs to use when sending the data collected by the beat.<\/span>\r\n# Multiple outputs may be used.<\/span>\r\noutput<\/span>:<\/span>\r\n\r\n ### Elasticsearch as output<\/span>\r\n elasticsearch<\/span>:<\/span>\r\n # Array of hosts to connect to.<\/span>\r\n # Scheme and port can be left out and will be set to the default (http and 9200)<\/span>\r\n # In case you specify and additional path, the scheme is required: http:\/\/localhost:9200\/path<\/span>\r\n # IPv6 addresses should always be defined as: https:\/\/[2001:db8::1]:9200<\/span>\r\n #hosts: [\"localhost:9200\"]<\/span>\r\n hosts<\/span>:<\/span> [<\/span>\"<\/span>192.168.1.18:9200\"<\/span>]<\/span>\r\n\r\n<\u7565><\/span>\r\n<\/code><\/pre>\n\u8bbe\u7f6e\u5b8c\u6210\u540e\uff0c\u542f\u52a8”Packetbeat”\u3002<\/p>\n
sudo systemctl start packetbeat\r\n<\/code><\/pre>\nElasticsearch \u5f39\u6027\u641c\u7d22<\/h2>\n
\u5728”Elasticsearch\/Kibana\u670d\u52a1\u5668”\u4e0a\u6267\u884c\u4ee5\u4e0b\u547d\u4ee4\u3002<\/p>\n
sudo <\/span>yum install<\/span> -y<\/span> java\r\n<\/code><\/pre>\nsudo cat<\/span> <<<\/span>EOF<\/span>> \/etc\/yum.repos.d\/elasticsearch.repo\r\n[elasticsearch-2.x]\r\nname=Elasticsearch repository for 2.x packages\r\nbaseurl=http:\/\/packages.elastic.co\/elasticsearch\/2.x\/centos\r\ngpgcheck=1\r\ngpgkey=http:\/\/packages.elastic.co\/GPG-KEY-elasticsearch\r\nenabled=1\r\n<\/span>EOF\r\n<\/span><\/code><\/pre>\nsudo <\/span>yum install <\/span>elasticsearch-2.3.5\r\n<\/code><\/pre>\n\u5b89\u88c5\u5b8c\u6210\u540e\uff0c\u5c06\u7f16\u8f91\u4ee5\u4e0b\u8bbe\u7f6e\u6587\u4ef6\u3002<\/p>\n
\/etc\/elasticsearch\/elasticsearch.yml\r\n<\/code><\/pre>\n\u5728\u7f51\u7edc\u90e8\u5206\uff0c\u5c06”Elasticsearch\/Kibana Server”\u7684IP\u5730\u5740\u586b\u5199\u5230”network.host”\u9009\u9879\u4e2d\u3002<\/p>\n
<\u7565><\/span>\r\n# ---------------------------------- Network -----------------------------------<\/span>\r\n#<\/span>\r\n# Set the bind address to a specific IP (IPv4 or IPv6):<\/span>\r\n#<\/span>\r\nnetwork.host<\/span>:<\/span> 192.168.1.18<\/span>\r\n#<\/span>\r\n# Set a custom port for HTTP:<\/span>\r\n#<\/span>\r\n# http.port: 9200<\/span>\r\n#<\/span>\r\n# For more information, see the documentation at:<\/span>\r\n# <http:\/\/www.elastic.co\/guide\/en\/elasticsearch\/reference\/current\/modules-network.html><\/span>\r\n<\u7565><\/span>\r\n<\/code><\/pre>\n\u914d\u7f6e\u5b8c\u6210\u540e\uff0c\u542f\u52a8”Elasticsearch”\u3002<\/p>\n
sudo systemctl start elasticsearch\r\n<\/code><\/pre>\nKibana \u53ef\u89c6\u5316\u5de5\u5177<\/h2>\n
\u5728”Elasticsearch\/Kibana\u670d\u52a1\u5668”\u4e0a\u6267\u884c\u4ee5\u4e0b\u547d\u4ee4\u3002<\/p>\n
sudo cat<\/span> <<<\/span>EOF<\/span>> \/etc\/yum.repos.d\/kibana.repo\r\n[kibana-4.5]\r\nname=Kibana repository for 4.5.x packages\r\nbaseurl=http:\/\/packages.elastic.co\/kibana\/4.5\/centos\r\ngpgcheck=1\r\ngpgkey=http:\/\/packages.elastic.co\/GPG-KEY-elasticsearch\r\nenabled=1\r\n<\/span>EOF\r\n<\/span><\/code><\/pre>\nsudo <\/span>yum install <\/span>kibana-4.5.4\r\n<\/code><\/pre>\n\u5b89\u88c5\u5b8c\u6210\u540e\uff0c\u9700\u8981\u7f16\u8f91\u4ee5\u4e0b\u914d\u7f6e\u6587\u4ef6\u3002<\/p>\n
\/opt\/kibana\/config\/kibana.yml<\/span>\r\n<\/code><\/pre>\n\u5c06”Elasticsearch\/Kibana Server” \u7684 IP \u5730\u5740\u586b\u5199\u5230 “elasticsearch.url” \u4e2d\u3002<\/p>\n
<\u7565><\/span>\r\n# The Elasticsearch instance to use for all your queries.<\/span>\r\nelasticsearch.url<\/span>:<\/span> \"<\/span>http:\/\/192.168.1.18:9200\"<\/span>\r\n\r\n# preserve_elasticsearch_host true will send the hostname specified in `elasticsearch`. If you set it to false,<\/span>\r\n# then the host you use to connect to *this* Kibana instance will be sent.<\/span>\r\n# elasticsearch.preserveHost: true<\/span>\r\n<\u7565><\/span>\r\n<\/code><\/pre>\n\u5728\u8bbe\u7f6e\u5b8c\u6210\u540e\uff0c\u6211\u4eec\u5c06\u542f\u52a8”Kibana”\u3002<\/p>\n
sudo <\/span>systemctl start kibana\r\n<\/code><\/pre>\nElasticsearch\u6a21\u677f\u7684\u5b9a\u4e49<\/h1>\n
\u4e3a\u4e86\u5904\u7406Packetbeat\u5728Elasticsearch\u4e2d\u83b7\u53d6\u5230\u7684\u4fe1\u606f\uff0c\u6211\u4eec\u9700\u8981\u5b9a\u4e49\u4e00\u4e2a\u6a21\u677f\u3002<\/p>\n
\u5728\u201cDNS\u670d\u52a1\u5668\u201d\u4e0a\u6267\u884c\u4ee5\u4e0b\u547d\u4ee4\u3002<\/p>\n
curl -XPUT<\/span> 'http:\/\/192.168.1.18:9200\/_template\/packetbeat'<\/span> -d<\/span>@\/etc\/packetbeat\/packetbeat.template.json\r\n\r\n{<\/span>\"acknowledged\"<\/span>:true}<\/span>\r\n<\/code><\/pre>\n\u786e\u8ba4\u6267\u884c\u547d\u4ee4\u540e\u7684\u7ed3\u679c\u4e3a\u201d{“acknowledged”:true}\u201d\u3002<\/p>\n
Kibana\u4eea\u8868\u677f\u5b9a\u4e49<\/h1>\n
\u4f7f\u7528Kibana\u5b9a\u4e49\u7528\u4e8e\u65e5\u5fd7\u53ef\u89c6\u5316\u7684\u4eea\u8868\u677f\u3002<\/p>\n
\u5728”Elasticsearch\/Kibana Server”\u4e0a\u6267\u884c\u4ee5\u4e0b\u547d\u4ee4\u3002<\/p>\n
\u203b\u5b89\u88c5Elastic\u516c\u53f8\u63d0\u4f9b\u7684\u4eea\u8868\u677f\u3002<\/p>\n
curl -L<\/span> -O<\/span> http:\/\/download.elastic.co\/beats\/dashboards\/beats-dashboards-1.2.3.zip\r\nunzip beats-dashboards-1.2.3.zip\r\ncd <\/span>beats-dashboards-1.2.3\/\r\n.\/load.sh\r\n<\/code><\/pre>\n\u9664\u4e86Packetbeat\u4e4b\u5916\uff0c\u8fd8\u4f1a\u5b89\u88c5\u5176\u4ed6Beats\u7cfb\u5217\u7684\u4eea\u8868\u76d8\u3002<\/p>\n
\u8bbf\u95eeKibana<\/h1>\n
\u6211\u8981\u4f7f\u7528Kibana\u8fdb\u884c\u8bbf\u95ee\u3002<\/p>\n
http:\/\/192.168.1.18:5601\/\r\n<\/span><\/code><\/pre>\n\u8bf7\u6253\u5f00\u4ee5\u4e0b\u754c\u9762\uff0c\u5e76\u4ece\u5de6\u4fa7\u83dc\u5355\u4e2d\u9009\u62e9”packetbeat-*”\uff0c\u5728\u53f3\u4fa7\u83dc\u5355\u4e2d\u627e\u5230\u8be5\u754c\u9762\u5e76\u70b9\u51fb\u661f\u5f62\u56fe\u6807\u3002<\/p>\n
![\"Kibana_2.5.4.jpg\"](\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d1dcd37434c4406c14548\/67-0.jpeg\" "\\"\\"")
<\/div>\n![\"Kibana_2.5.4..jpg\"](\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d1dcd37434c4406c14548\/68-0.jpeg\" "\\"\\"")
<\/div>\n\u63a5\u4e0b\u6765\uff0c\u70b9\u51fb\u4e0a\u65b9\u83dc\u5355\u680f\u7684\u201cDashbord\u201d\uff0c\u7136\u540e\u70b9\u51fb\u663e\u793a\u5c4f\u5e55\u53f3\u4e0a\u65b9\u7684\u6587\u4ef6\u5939\u56fe\u6807\u3002<\/p>\n
![\"\u30b9\u30af\u30ea\u30fc\u30f3\u30b7\u30e7\u30c3\u30c8_081516_072415_PM.jpg\"](\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d1dcd37434c4406c14548\/70-0.jpeg\" "\\"\\"")
<\/div>\n![\"\u30b9\u30af\u30ea\u30fc\u30f3\u30b7\u30e7\u30c3\u30c8_081516_072505_PM.jpg\"](\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d1dcd37434c4406c14548\/71-0.jpeg\" "\\"\\"")
<\/div>\nDashbord\u306e\u9078\u629e\u30e1\u30cb\u30e5\u30fc\u304c\u8868\u793a\u3055\u308c\u308b\u306e\u3067\u3001\u201dPacketbeat Dashboard\u201d\u3092\u30af\u30ea\u30c3\u30af\u3057\u307e\u3059\u3002<\/p>\n
![\"Kibana_2.5.4.jpg\"](\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d1dcd37434c4406c14548\/73-1.jpeg\" "\\"\\"")
<\/div>\n\u521b\u5efa\u4e13\u7528\u4e8eDNS\u7684\u4eea\u8868\u677f<\/h1>\n
\u7531\u4e8e\u201cPacketbeat Dashboard\u201d\u5e76\u4e0d\u662f\u4e13\u7528\u4e8eDNS\u7684\u4eea\u8868\u677f\uff0c\u56e0\u6b64\u6211\u4eec\u9700\u8981\u521b\u5efa\u4e00\u4e2a\u4e13\u7528\u7684\u4eea\u8868\u677f\u3002<\/p>\n
\u6211\u60f3\u5728\u4e0b\u4e00\u7bc7\u6587\u7ae0\u4e2d\u5199\u4e0b\u7eed\u7bc7\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"
\u9996\u5148 \u6700\u8fd1\u6709\u4e00\u4e9b\u6d88\u606f\uff0c\u6765\u81ea\u682a\u5f0f\u4f1a\u793e\u30e9\u30c3\u30af\u516c\u53f8\uff0c\u5173\u4e8e\u4f7f\u7528DNS\u534f\u8bae\u7684\u75c5\u6bd2\u7684\u8b66\u544a\u3002 \u25a0\u9060\u9694\u64cd\u4f5c\u30a6\u30a4\u30eb\u30b9\u306e\u5236\u5fa1\u306bDN […]<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-34523","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"yoast_head":"\n
\u4f7f\u7528Packetbeat+Elasticsearch+Kibana\u5c06DNS\u65e5\u5fd7\u53ef\u89c6\u5316 - Blog - Silicon Cloud<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.silicloud.com\/zh\/blog\/\u4f7f\u7528packetbeatelasticsearchkibana\u5c06dns\u65e5\u5fd7\u53ef\u89c6\u5316\u3002\/\" \/>\n<meta property=\"og:locale\" content=\"zh_CN\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\u4f7f\u7528Packetbeat+Elasticsearch+Kibana\u5c06DNS\u65e5\u5fd7\u53ef\u89c6\u5316\" \/>\n<meta property=\"og:description\" content=\"\u9996\u5148 \u6700\u8fd1\u6709\u4e00\u4e9b\u6d88\u606f\uff0c\u6765\u81ea\u682a\u5f0f\u4f1a\u793e\u30e9\u30c3\u30af\u516c\u53f8\uff0c\u5173\u4e8e\u4f7f\u7528DNS\u534f\u8bae\u7684\u75c5\u6bd2\u7684\u8b66\u544a\u3002 \u25a0\u9060\u9694\u64cd\u4f5c\u30a6\u30a4\u30eb\u30b9\u306e\u5236\u5fa1\u306bDN […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.silicloud.com\/zh\/blog\/\u4f7f\u7528packetbeatelasticsearchkibana\u5c06dns\u65e5\u5fd7\u53ef\u89c6\u5316\u3002\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog - Silicon Cloud\" \/>\n<meta property=\"article:published_time\" content=\"2023-01-17T21:46:50+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-04-28T17:41:10+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d1dcd37434c4406c14548\/13-0.png\" \/>\n<meta name=\"author\" content=\"\u65b0, \u97f5\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u4f5c\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"\u65b0, \u97f5\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 \u5206\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/\",\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/\",\"name\":\"\u4f7f\u7528Packetbeat+Elasticsearch+Kibana\u5c06DNS\u65e5\u5fd7\u53ef\u89c6\u5316 - Blog - Silicon Cloud\",\"isPartOf\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#website\"},\"datePublished\":\"2023-01-17T21:46:50+00:00\",\"dateModified\":\"2024-04-28T17:41:10+00:00\",\"author\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/4ba4019495123db3038fd0809e6959c9\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#breadcrumb\"},\"inLanguage\":\"zh-Hans\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"\u9996\u9875\",\"item\":\"https:\/\/www.silicloud.com\/zh\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\u4f7f\u7528Packetbeat+Elasticsearch+Kibana\u5c06DNS\u65e5\u5fd7\u53ef\u89c6\u5316\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#website\",\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/\",\"name\":\"Blog - Silicon Cloud\",\"description\":\"\",\"inLanguage\":\"zh-Hans\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/4ba4019495123db3038fd0809e6959c9\",\"name\":\"\u65b0, \u97f5\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d484b6c6e4ae82e8a9efea989e1d2af46d9b6ef128101e63b18f559fca0ae627?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d484b6c6e4ae82e8a9efea989e1d2af46d9b6ef128101e63b18f559fca0ae627?s=96&d=mm&r=g\",\"caption\":\"\u65b0, \u97f5\"},\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/author\/yunxin\/\"},{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#local-main-organization-logo\",\"url\":\"\",\"contentUrl\":\"\",\"caption\":\"Blog - Silicon Cloud\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"\u4f7f\u7528Packetbeat+Elasticsearch+Kibana\u5c06DNS\u65e5\u5fd7\u53ef\u89c6\u5316 - Blog - Silicon Cloud","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.silicloud.com\/zh\/blog\/\u4f7f\u7528packetbeatelasticsearchkibana\u5c06dns\u65e5\u5fd7\u53ef\u89c6\u5316\u3002\/","og_locale":"zh_CN","og_type":"article","og_title":"\u4f7f\u7528Packetbeat+Elasticsearch+Kibana\u5c06DNS\u65e5\u5fd7\u53ef\u89c6\u5316","og_description":"\u9996\u5148 \u6700\u8fd1\u6709\u4e00\u4e9b\u6d88\u606f\uff0c\u6765\u81ea\u682a\u5f0f\u4f1a\u793e\u30e9\u30c3\u30af\u516c\u53f8\uff0c\u5173\u4e8e\u4f7f\u7528DNS\u534f\u8bae\u7684\u75c5\u6bd2\u7684\u8b66\u544a\u3002 \u25a0\u9060\u9694\u64cd\u4f5c\u30a6\u30a4\u30eb\u30b9\u306e\u5236\u5fa1\u306bDN […]","og_url":"https:\/\/www.silicloud.com\/zh\/blog\/\u4f7f\u7528packetbeatelasticsearchkibana\u5c06dns\u65e5\u5fd7\u53ef\u89c6\u5316\u3002\/","og_site_name":"Blog - Silicon Cloud","article_published_time":"2023-01-17T21:46:50+00:00","article_modified_time":"2024-04-28T17:41:10+00:00","og_image":[{"url":"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d1dcd37434c4406c14548\/13-0.png"}],"author":"\u65b0, \u97f5","twitter_card":"summary_large_image","twitter_misc":{"\u4f5c\u8005":"\u65b0, \u97f5","\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4":"3 \u5206"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/","url":"https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/","name":"\u4f7f\u7528Packetbeat+Elasticsearch+Kibana\u5c06DNS\u65e5\u5fd7\u53ef\u89c6\u5316 - Blog - Silicon Cloud","isPartOf":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/#website"},"datePublished":"2023-01-17T21:46:50+00:00","dateModified":"2024-04-28T17:41:10+00:00","author":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/4ba4019495123db3038fd0809e6959c9"},"breadcrumb":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#breadcrumb"},"inLanguage":"zh-Hans","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"\u9996\u9875","item":"https:\/\/www.silicloud.com\/zh\/blog\/"},{"@type":"ListItem","position":2,"name":"\u4f7f\u7528Packetbeat+Elasticsearch+Kibana\u5c06DNS\u65e5\u5fd7\u53ef\u89c6\u5316"}]},{"@type":"WebSite","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#website","url":"https:\/\/www.silicloud.com\/zh\/blog\/","name":"Blog - Silicon Cloud","description":"","inLanguage":"zh-Hans"},{"@type":"Person","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/4ba4019495123db3038fd0809e6959c9","name":"\u65b0, \u97f5","image":{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/d484b6c6e4ae82e8a9efea989e1d2af46d9b6ef128101e63b18f559fca0ae627?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d484b6c6e4ae82e8a9efea989e1d2af46d9b6ef128101e63b18f559fca0ae627?s=96&d=mm&r=g","caption":"\u65b0, \u97f5"},"url":"https:\/\/www.silicloud.com\/zh\/blog\/author\/yunxin\/"},{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e4%bd%bf%e7%94%a8packetbeatelasticsearchkibana%e5%b0%86dns%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#local-main-organization-logo","url":"","contentUrl":"","caption":"Blog - Silicon Cloud"}]}},"_links":{"self":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/34523","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/comments?post=34523"}],"version-history":[{"count":2,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/34523\/revisions"}],"predecessor-version":[{"id":72398,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/34523\/revisions\/72398"}],"wp:attachment":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/media?parent=34523"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/categories?post=34523"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/tags?post=34523"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
<\/p>\n
- \n