- \n
- \n
- OS\uff1aCentOS6.5 on VirtualBox + Vagrant<\/ul>\n<\/li>\n<\/ul>\n
- \n
- Logstash 2.1.1<\/ul>\n<\/li>\n<\/ul>\n
- \n
- Elasticsearch 2.1.0<\/ul>\n<\/li>\n<\/ul>\n
- \n
- Kibana 4.3.0<\/ul>\n<\/li>\n<\/ul>\n
- \n
- Elasticsearch<\/ul>\n<\/li>\n<\/ul>\n
- \n
- https:\/\/www.elastic.co\/products\/elasticsearch<\/ul>\n<\/li>\n<\/ul>\n
- \n
- Logstash<\/ul>\n<\/li>\n<\/ul>\n
- \n
- https:\/\/www.elastic.co\/products\/logstash<\/ul>\n<\/li>\n<\/ul>\n
- \n
- Kibana<\/ul>\n<\/li>\n<\/ul>\n
- \n
- https:\/\/www.elastic.co\/products\/kibana<\/ul>\n<\/li>\n<\/ul>\n
- \n
- Shield<\/ul>\n<\/li>\n<\/ul>\n
- \n
- esusers<\/ul>\n<\/li>\n<\/ul>\n
- \n
- Shield\u306b\u7d44\u307f\u8fbc\u307e\u308c\u305f\u30cd\u30a4\u30c6\u30a3\u30d6\u306e\u8a8d\u8a3c\u30b7\u30b9\u30c6\u30e0\u3068\u306a\u308a\u307e\u3059\u3002\uff08\u30c7\u30d5\u30a9\u30eb\u30c8\uff09<\/ul>\n<\/li>\n<\/ul>\n
- \n
- \u30d5\u30a1\u30a4\u30eb\u30d9\u30fc\u30b9\u306e\u30ec\u30eb\u30e0\u3068\u306a\u308a\u3001\u30b3\u30de\u30f3\u30c9\u30e9\u30a4\u30f3\u304b\u3089\u30e6\u30fc\u30b6\u306e\u8ffd\u52a0\u30fb\u524a\u9664\u7b49\u3092\u5b9f\u884c\u3059\u308b\u3053\u3068\u304c\u3067\u304d\u307e\u3059\u3002<\/ul>\n<\/li>\n<\/ul>\n
- \n
- LDAP<\/ul>\n<\/li>\n<\/ul>\n
- \n
- \u5916\u90e8\u306eLDAP\u30b5\u30fc\u30d0\u3067\u30e6\u30fc\u30b6\u3092\u8a8d\u8a3c\u3059\u308b\u30ec\u30eb\u30e0\u3068\u306a\u308a\u307e\u3059\u3002<\/ul>\n<\/li>\n<\/ul>\n
- \n
- Active Directory<\/ul>\n<\/li>\n<\/ul>\n
- \n
- \u5916\u90e8\u306eActive Directory\u30b5\u30fc\u30d0\u3067\u30e6\u30fc\u30b6\u3092\u8a8d\u8a3c\u3059\u308b\u30ec\u30eb\u30e0\u3068\u306a\u308a\u307e\u3059\u3002<\/ul>\n<\/li>\n<\/ul>\n
- \n
- PKI<\/ul>\n<\/li>\n<\/ul>\n
<\/p>\n
- \u516c\u958b\u9375\u3092\u5229\u7528\u3057\u3066\u8a8d\u8a3c\u3092\u884c\u3046\u30ec\u30eb\u30e0\u3068\u306a\u308a\u307e\u3059\u3002<\/ul>\n
\u6211\u60f3\u4f7f\u7528\u9ed8\u8ba4\u7684esusers\u9886\u57df\u6765\u5904\u7406\u672c\u6b21\u4e8b\u52a1\u3002<\/p>\n
\u6dfb\u52a0\u7528\u6237<\/h3>\n
\u5728esusers\u9886\u57df\u4e2d\uff0c\u60a8\u53ef\u4ee5\u901a\u8fc7esusers\u547d\u4ee4\u6dfb\u52a0\u7528\u6237\uff0c\u4f46\u5728\u6dfb\u52a0\u7528\u6237\u4e4b\u524d\uff0c\u6211\u5e0c\u671b\u5148\u63d0\u53ca\u6388\u6743\u3002<\/p>\n
\u6388\u6743\uff08Authorization\uff09<\/h2>\n
Shield\u5728\u8bb8\u53ef\u65b9\u9762\u7684\u7406\u5ff5<\/h3>\n
Shiled\u5229\u7528\u4e86\u57fa\u4e8e\u89d2\u8272\u7684\u8bbf\u95ee\u63a7\u5236\uff08RBAC\uff09\u6a21\u578b\u6765\u5b9e\u73b0\u5bf9\u6bcf\u4e2a\u7528\u6237\u7684\u6743\u9650\u7ba1\u7406\u3002\u7b80\u5355\u6765\u8bf4\uff0c\u6bcf\u4e2a\u89d2\u8272\u90fd\u6709\u4e00\u7ec4\u6743\u9650\u5b9a\u4e49\uff0c\u800c\u6bcf\u4e2a\u7528\u6237\u5219\u4e0e\u4e00\u7ec4\u89d2\u8272\u76f8\u7ed1\u5b9a\u3002<\/p>\n
\u5b9a\u4e49\u5377<\/h3>\n
Shild\u7684\u89d2\u8272\u7531roles.yml\u6587\u4ef6\u5b9a\u4e49\u3002
\n\u9ed8\u8ba4\u60c5\u51b5\u4e0b\uff0c\u5df2\u5b9a\u4e49\u4e86\u51e0\u4e2a\u89d2\u8272\uff0c\u5982\u7ba1\u7406\u5458\u89d2\u8272admin\u3002<\/p>\n# All cluster rights<\/span>\r\n# All operations on all indices<\/span>\r\nadmin<\/span>:<\/span>\r\n cluster<\/span>:<\/span> all<\/span>\r\n indices<\/span>:<\/span>\r\n '<\/span>*'<\/span>:<\/span>\r\n privileges<\/span>:<\/span> all<\/span>\r\n\r\n# Monitoring cluster privileges<\/span>\r\n# All operations on all indices<\/span>\r\npower_user<\/span>:<\/span>\r\n cluster<\/span>:<\/span> monitor<\/span>\r\n indices<\/span>:<\/span>\r\n '<\/span>*'<\/span>:<\/span>\r\n privileges<\/span>:<\/span> all<\/span>\r\n\r\n# Only read operations on indices<\/span>\r\nuser<\/span>:<\/span>\r\n indices<\/span>:<\/span>\r\n '<\/span>*'<\/span>:<\/span>\r\n privileges<\/span>:<\/span> read<\/span>\r\n\r\n# Only read operations on indices named events_*<\/span>\r\nevents_user<\/span>:<\/span>\r\n indices<\/span>:<\/span>\r\n '<\/span>events_*'<\/span>:<\/span>\r\n privileges<\/span>:<\/span> read<\/span>\r\n<\/code><\/pre>\nShield\u5c06Elasticsearch\u7684\u6743\u9650\u5206\u4e3a\u4e24\u4e2a\u4e3b\u8981\u7c7b\u578b\uff1acluster\uff08\u7fa4\u96c6\uff09\u548cindices\uff08\u7d22\u5f15\uff09\u3002
\ncluster\u5b9a\u4e49\u4e86\u5bf9Elasticsearch\u7fa4\u96c6\u7684\u7ba1\u7406\u548c\u76d1\u63a7\u64cd\u4f5c\u7684\u6743\u9650\u3002
\nindices\u5b9a\u4e49\u4e86\u5bf9\u7fa4\u96c6\u4e2d\u7279\u5b9a\u7d22\u5f15\u7684\u7ba1\u7406\u548c\u76d1\u63a7\u64cd\u4f5c\u7684\u6743\u9650\u3002<\/p>\n\u53ef\u4ee5\u4e3a\u6bcf\u4e2acluster\u548c\u7d22\u5f15\u8bbe\u7f6eall\u3001monitor\u3001read\u3001write\u7b49\u9884\u5b9a\u4e49\u6743\u9650\uff0c\u4e5f\u53ef\u4ee5\u66f4\u7ec6\u7c92\u5ea6\u5730\u6307\u5b9a\u7279\u5b9a\u89d2\u8272\u7684\u7279\u5b9a\u64cd\u4f5c\uff0c\u5982\u4e0b\u6240\u793a\u3002<\/p>\n
user01<\/span>:<\/span>\r\n indices<\/span>:<\/span>\r\n '<\/span>*'<\/span>:<\/span>\r\n privileges<\/span>:<\/span> indices:admin\/create, indices:admin\/exists<\/span>\r\n<\/code><\/pre>\n\u589e\u52a0\u5377<\/h3>\n
\u5c3d\u7ba1\u524d\u9762\u7684\u51c6\u5907\u5de5\u4f5c\u6709\u70b9\u957f\uff0c\u4f46\u8fd9\u6b21\u6211\u4eec\u5c06\u5728Kibana\u4e2d\u4f7f\u7528\u4ee5\u4e0b\u4e09\u79cd\u89d2\u8272\u3002<\/p>\n
- \n
- \n
- kibana4_server\uff1aKibana\u30b5\u30fc\u30d0\u7528\u306e\u30ed\u30fc\u30eb<\/ul>\n<\/li>\n<\/ul>\n
- \n
- kibana4\uff1aKibana\u7ba1\u7406\u30ed\u30fc\u30eb\uff08Visualization\u3001Dashboard\u306e\u8aad\u53d6\u30fb\u4f5c\u6210\u30fb\u66f4\u65b0\u30fb\u524a\u9664\u53ef\uff09<\/ul>\n<\/li>\n<\/ul>\n
<\/p>\n
- kibana4_monitor\uff1aKibana\u76e3\u8996\u30ed\u30fc\u30eb\uff08Visualization\u3001Dashboard\u306f\u8aad\u53d6\u306e\u307f\u53ef\uff09<\/ul>\n
\u7f16\u8f91roles.yml\u6587\u4ef6\u5e76\u6dfb\u52a0\u4ee5\u4e0b\u5185\u5bb9\uff0c\u4f7f\u7528kibana4_server\u89d2\u8272\u548ckibana4\u89d2\u8272\u7684\u9ed8\u8ba4\u5b9a\u4e49\uff0c\u521b\u5efa\u4e00\u4e2a\u65b0\u7684kibana4_monitoring\u89d2\u8272\u3002<\/p>\n
# The required permissions for the kibana 4 monitor<\/span>\r\nkibana4_monitoring<\/span>:<\/span>\r\n cluster<\/span>:<\/span>\r\n -<\/span> cluster:monitor\/nodes\/info<\/span>\r\n -<\/span> cluster:monitor\/health<\/span>\r\n indices<\/span>:<\/span>\r\n '<\/span>logstash-*'<\/span>:<\/span>\r\n -<\/span> indices:admin\/get<\/span>\r\n -<\/span> indices:admin\/mappings\/fields\/get<\/span>\r\n -<\/span> indices:admin\/validate\/query<\/span>\r\n -<\/span> indices:data\/read\/search<\/span>\r\n -<\/span> indices:data\/read\/msearch<\/span>\r\n -<\/span> indices:data\/read\/field_stats<\/span>\r\n '<\/span>.kibana'<\/span>:<\/span>\r\n -<\/span> indices:admin\/exists<\/span>\r\n -<\/span> indices:admin\/get<\/span>\r\n -<\/span> indices:admin\/mapping\/put<\/span>\r\n -<\/span> indices:admin\/mappings\/fields\/get<\/span>\r\n -<\/span> indices:admin\/refresh<\/span>\r\n -<\/span> indices:admin\/validate\/query<\/span>\r\n -<\/span> indices:data\/read\/mget<\/span>\r\n -<\/span> indices:data\/read\/search<\/span>\r\n -<\/span> indices:data\/read\/msearch<\/span>\r\n -<\/span> indices:data\/read\/field_stats<\/span>\r\n<\/code><\/pre>\n\u4e0eKibana 4\u89d2\u8272\u7684\u5b9a\u4e49\u8fdb\u884c\u6bd4\u8f83\u540e\uff0c\u6211\u4eec\u53ef\u4ee5\u53d1\u73b0.kibana\u7d22\u5f15\u7684\u6570\u636e\u5199\u5165\u6743\u9650\u88ab\u6392\u9664\u5728\u5916\u3002<\/p>\n
# The required permissions for kibana 4 users.<\/span>\r\nkibana4<\/span>:<\/span>\r\n cluster<\/span>:<\/span>\r\n -<\/span> cluster:monitor\/nodes\/info<\/span>\r\n -<\/span> cluster:monitor\/health<\/span>\r\n indices<\/span>:<\/span>\r\n '<\/span>*'<\/span>
<\/p>\n
- \n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- https:\/\/www.elastic.co\/products\/shield<\/ul>\n
\u4e8b\u524d\u51c6\u5907<\/h1>\n
\u5b89\u88c5ELK<\/h2>\n
\u65e5\u5fd7\u805a\u5408\u5de5\u5177<\/h3>\n
wget -P<\/span> \/usr\/local\/src\/ https:\/\/download.elastic.co\/logstash\/logstash\/packages\/centos\/logstash-2.1.1-1.noarch.rpm\r\nrpm -ivh<\/span> \/usr\/local\/src\/logstash-2.1.1-1.noarch.rpm\r\n<\/code><\/pre>\n\u5f39\u6027\u641c\u7d22<\/h3>\n
wget -P<\/span> \/usr\/local\/src\/ https:\/\/download.elasticsearch.org\/elasticsearch\/release\/org\/elasticsearch\/distribution\/rpm\/elasticsearch\/2.1.0\/elasticsearch-2.1.0.rpm\r\nrpm -ivh<\/span> \/usr\/local\/src\/elasticsearch-2.1.0.rpm\r\n<\/code><\/pre>\nElasticsearch\u53ef\u89c6\u5316\u5de5\u5177Kibana<\/h3>\n
wget -P<\/span> \/usr\/local\/src\/ https:\/\/download.elastic.co\/kibana\/kibana\/kibana-4.3.0-linux-x64.tar.gz\r\ntar <\/span>xzvf \/usr\/local\/src\/kibana-4.3.0-linux-x64.tar.gz -C<\/span> \/opt\r\n<\/code><\/pre>\n\u4e3a\u4e86\u542f\u52a8ELK\uff0c\u5047\u8bbeJava\u5df2\u7ecf\u5b89\u88c5\u3002<\/p>\n
ELK\u5408\u4f5c<\/h2>\n
\u4f7f\u7528Logstash\u7684input-twitter-plugin\u5c06\u65f6\u95f4\u7ebf\u5bfc\u5165\u5230Elasticsearch\u4e2d\uff0c\u5e76\u5728Kibana\u4e2d\u8fdb\u884c\u53ef\u89c6\u5316\u3002
\n\u5c3d\u7ba1\u8fd9\u4e0d\u662f\u91cd\u70b9\uff0c\u4f46\u8003\u8651\u5230\u5373\u5c06\u5230\u6765\u7684\u5723\u8bde\u8282\uff0c\u6211\u4eec\u5c06\u5c1d\u8bd5\u6536\u96c6\u4e0e\u201cXmas\u201d\u5173\u952e\u8bcd\u76f8\u5173\u7684\u65f6\u95f4\u7ebf\u3002<\/p>\nLogstash\u7684\u914d\u7f6e<\/h3>\n
input<\/span> {\r\n twitter<\/span> {\r\n consumer_key<\/span> => \"<consumer_key>\"<\/span>\r\n consumer_secret<\/span> => \"<consumer_secret>\"<\/span>\r\n oauth_token<\/span> => \"<oauth_token>\"<\/span>\r\n oauth_token_secret<\/span> => \"<oauth_token_secret>\"<\/span>\r\n keywords<\/span> => [\"Xmas\"<\/span>]\r\n full_tweet<\/span> => true<\/span>\r\n ignore_retweets<\/span> => true<\/span>\r\n }\r\n}\r\noutput<\/span> {\r\n elasticsearch<\/span> {\r\n }\r\n stdout<\/span> {\r\n codec<\/span> => rubydebug<\/span>\r\n }\r\n}\r\n<\/code><\/pre>\n\u8bf7\u4f7f\u7528\u5728Twitter Apps\u4e2d\u6ce8\u518c\u7684\u5e94\u7528\u7a0b\u5e8f\u7684consumer_key\uff0cconsumer_secret\uff0coauth_token\u548coauth_token_secret\u3002
\n\u53c2\u8003\uff1ahttp:\/\/dev.classmethod.jp\/cloud\/aws\/twitter-visualize-using-elastic\/<\/p>\n\u542f\u52a8Elasticsearch<\/h3>\n
service elasticsearch start\r\n<\/code><\/pre>\n\u542f\u52a8Kibana<\/h3>\n
\/opt\/kibana-4.3.0-linux-x64\/bin\/kibana &\r\n<\/code><\/pre>\n\u542f\u52a8Logstash<\/h3>\n
service logstash start\r\n<\/code><\/pre>\n\u786e\u8ba4\u65e5\u5fd7\u8054\u52a8<\/h3>\n
![\"\u30b9\u30af\u30ea\u30fc\u30f3\u30b7\u30e7\u30c3\u30c8](\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d442037434c4406c9e40a\/28-0.png\" "\\"\\"")
<\/div>\n\u5b89\u5168\u8bbe\u7f6e<\/h1>\n
\u5f53\u51c6\u5907\u5de5\u4f5c\u5df2\u5b8c\u6210\uff0c\u73b0\u5728\u8981\u5f00\u59cb\u5b9e\u73b0\u5bf9Kibana\u7684\u8eab\u4efd\u9a8c\u8bc1\u548c\u6388\u6743\u3002<\/p>\n
\u76fe\u724c\u5b89\u88c5<\/h2>\n
\u9996\u5148\uff0c\u5b89\u88c5Elasticsearch\u7684\u5b89\u5168\u63d2\u4ef6\u201cShield\u201d\u3002\u8be5\u63d2\u4ef6\u662f\u4e00\u4e2a\u4ed8\u8d39\u8ba2\u9605\u670d\u52a1\uff0c\u5e76\u63d0\u4f9b30\u5929\u7684\u8bd5\u7528\u8bb8\u53ef\u8bc1\uff0c\u60a8\u53ef\u4ee5\u4f7f\u7528\u5b83\u6765\u8bd5\u7528\u3002<\/p>\n
\/usr\/share\/elasticsearch\/bin\/plugin install <\/span>elasticsearch\/license\/latest\r\n\/usr\/share\/elasticsearch\/bin\/plugin install <\/span>elasticsearch\/shield\/latest\r\n<\/code><\/pre>\n\u9274\u5b9a\uff08Authentication\uff09<\/h2>\n
\u5728Shield\u4e2d\u7684\u8ba4\u8bc1\u7406\u5ff5<\/h3>\n
Shield\u5728\u53d7\u5230\u7528\u6237\u8d44\u683c\u4fe1\u606f\u5e76\u8fdb\u884c\u9a8c\u8bc1\u7684\u8ba4\u8bc1\u673a\u5236\u4e2d\u5b9a\u4e49\u4e86\u201c\u9886\u57df\u201d\uff0c\u5e76\u652f\u6301\u56db\u79cd\u7c7b\u578b\u7684\u201c\u9886\u57df\u201d\u3002<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- Java 1.8.65<\/ul>\n
\u5b98\u65b9\u7f51\u7ad9<\/h1>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n
<\/p>\n
- \n
- \n