{"id":41173,"date":"2023-07-29T14:32:46","date_gmt":"2023-12-22T12:28:37","guid":{"rendered":"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/"},"modified":"2024-04-30T15:55:53","modified_gmt":"2024-04-30T07:55:53","slug":"%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82","status":"publish","type":"post","link":"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/","title":{"rendered":"\u6211\u5c1d\u8bd5\u5728Kibana\u4e0a\u5c06Shell\u7684\u5386\u53f2\u53ef\u89c6\u5316"},"content":{"rendered":"<h1>\u6700\u521d<\/h1>\n<p>\u5f53\u6211\u5728\u63a2\u7d22\u5404\u79cd\u6570\u636e\u53ef\u89c6\u5316\u7684\u53ef\u80fd\u6027\u65f6\uff0c\u6211\u627e\u5230\u4e86\u4e00\u7bc7\u975e\u5e38\u5438\u5f15\u4eba\u7684\u6587\u7ae0\u3002<\/p>\n<ul class=\"post-ul\">Vim\u3067\u306e\u4f5c\u696d\u3092Kibana\u3067\u53ef\u8996\u5316\u3057\u3066\u307f\u305f<\/ul>\n<p>\u6211\u5bf9\u60a8\u5f00\u53d1\u4e00\u4e2a\u63d2\u4ef6\u4ee5\u5c06Vim\u7684\u5ea6\u91cf\u6307\u6807\u6295\u5165\u5230Elasticsearch\u4e2d\u611f\u5230\u975e\u5e38\u60ca\u53f9\u3002<\/p>\n<ul class=\"post-ul\">\u30d6\u30e9\u30a6\u30b6\u306e\u95b2\u89a7\u5c65\u6b74\u3067\u4eba\u751f\u306e\u68da\u5378\u3057\uff08embulk + elasticsearch + kibana\u3067\u53ef\u8996\u5316\uff09<\/ul>\n<p>\u5982\u679c\u6709\u53ef\u4ee5\u63d0\u53d6\u7684\u5386\u53f2\u6570\u636e\uff0c\u4f60\u4f1a\u60f3\u8981\u56de\u987e\u4e00\u4e0b\u7684\u3002<\/p>\n<p>\u7531\u4e8e\u53bb\u5e7411\u6708\u5de6\u53f3\u5f00\u59cb\u7a0d\u5fae\u63a5\u89e6\u4e86Embulk\u3001Elasticsearch\u548cKibana\uff0c\u5bf9\u5b83\u4eec\u7684\u4f7f\u7528\u65b9\u6cd5\u6709\u4e86\u4e00\u5b9a\u7684\u4e86\u89e3\uff0c\u6240\u4ee5\u4e3a\u4e86\u590d\u4e60\u517c\u53ef\u89c6\u5316shell\u5386\u53f2\u6587\u4ef6\uff0c\u6211\u60f3\u8bd5\u4e00\u8bd5\u3002<\/p>\n<h1>\u5fc5\u8981\u7684\uff08\u73af\u5883\uff09<\/h1>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>\u6709\u4e9b\u65f6\u95f4\u6233\u662f\u9644\u5728Shell\u5386\u53f2\u6587\u4ef6\u4e0a\u7684<\/ol>\n<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>Embulk 0.8.8<\/ol>\n<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>Docker<\/ol>\n<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>Elasticsearch 2.2.1<\/ol>\n<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<ol>Kibana 4.4.2<\/ol>\n<p>\u4f7f\u7528\u7684\u73af\u5883\u662fDebian GNU\/Linux 8.2\uff08jessie\uff09\u3002\u7531\u4e8eDocker\u7528\u4e8e\u7b80\u5316Elastic\u73af\u5883\u7684\u6784\u5efa\u8fc7\u7a0b\uff0c\u56e0\u6b64\u4e0d\u662f\u5fc5\u9700\u7684\u3002<\/p>\n<h1>\u7ed3\u679c\u53ef\u89c6\u5316<\/h1>\n<p>\u53ea\u6709\u5bf9Shell\u7684\u5386\u53f2\u6587\u4ef6\u6709\u6240\u4e86\u89e3\uff0c\u6240\u4ee5\u53ea\u80fd\u4e86\u89e3\u5230\u9891\u7e41\u6267\u884c\u7684\u547d\u4ee4\u3002\u4f46\u662f\uff0c\u901a\u8fc7\u52a0\u8f7d\u591a\u4e2a\u5386\u53f2\u6587\u4ef6\uff0c\u53ef\u4ee5\u770b\u5230\u4e0d\u540c\u4e3b\u673a\u6216\u65f6\u95f4\u6bb5\u7684\u5dee\u5f02\uff0c\u975e\u5e38\u6709\u8da3\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d457337434c4406ca28b1\/12-0.png\" alt=\"\u30b7\u30a7\u30eb\u306e\u30d2\u30b9\u30c8\u30ea\u306e\u53ef\u8996\u5316\u7d50\u679c\" \/><\/div>\n<h1>&#8220;\u8bbe\u7f6eShell\u5386\u53f2\u8bb0\u5f55&#8221;<\/h1>\n<h2>zsh\uff1a\u7ec8\u7aef\u547d\u4ee4\u884c\u73af\u5883\u7684\u4e00\u79cd\u9009\u9879\u3002<\/h2>\n<p>\u5728\u6570\u636e\u53ef\u89c6\u5316\u4e2d\uff0c\u65f6\u95f4\u6233\u975e\u5e38\u91cd\u8981\uff0c\u56e0\u6b64 extended_history \u662f\u5fc5\u9700\u7684\u3002<\/p>\n<p>\u8bbe\u5b9a\u6b64\u9009\u9879\u540e\uff0c\u5386\u53f2\u8bb0\u5f55\u6587\u4ef6\u5c06\u88ab\u8bb0\u5f55\u5982\u4e0b\u3002<\/p>\n<pre class=\"post-pre\"><code>: 1421072025:0;ls -l\r\n\r\n: \u6642\u523b:\u7d4c\u904e\u79d2;\u30b3\u30de\u30f3\u30c9\r\n<\/code><\/pre>\n<p>\u987a\u4fbf\u8bf4\u4e00\u4e0b\uff0c\u6211\u4f7f\u7528\u7684zsh\u5386\u53f2\u76f8\u5173\u7684\u8bbe\u7f6e\u5982\u4e0b\u6240\u793a\u3002\u8bbe\u7f6e\u66f4\u591a\u7684\u5386\u53f2\u8bb0\u5f55\u884c\u6570\u3002\u8be6\u7ec6\u5185\u5bb9\u8bf7\u67e5\u9605\u624b\u518c\u3002<\/p>\n<ul class=\"post-ul\">zsh: 16 Options &#8211; ZSH Documentation<\/ul>\n<pre class=\"post-pre\"><code>HISTSIZE=1000000\r\nSAVEHIST=$HISTSIZE\r\n\r\nsetopt extended_history\r\nsetopt hist_expire_dups_first\r\nsetopt hist_ignore_dups\r\nsetopt hist_ignore_space\r\nsetopt inc_append_history\r\nsetopt share_history\r\n\r\nalias history='history -t \"%Y-%m-%d %a %H:%M:%S\"'\r\nfunction history-all { history 1 }\r\n<\/code><\/pre>\n<h2>\u731b\u70c8\u51fb\u6253<\/h2>\n<p>\u5f53\u6307\u5b9aHISTTIMEFORMAT\u65f6\uff0c\u5c06\u4f1a\u8f93\u51fa\u7ecf\u8fc7\u7684\u65f6\u95f4\u3002<\/p>\n<pre class=\"post-pre\"><code>#1446886196\r\nls -l\r\n<\/code><\/pre>\n<pre class=\"post-pre\"><code><span class=\"nv\">HISTTIMEFORMAT<\/span><span class=\"o\">=<\/span><span class=\"s1\">'%Y-%m-%dT%T%z '<\/span>\r\n<\/code><\/pre>\n<ul class=\"post-ul\">Bash Reference Manual: Bash Variables<\/ul>\n<h1>\u5f39\u6027\u641c\u7d22<\/h1>\n<p>\u56e0\u4e3a\u4e0d\u4e86\u89e3Java\u73af\u5883\uff0c\u6240\u4ee5\u9009\u62e9\u4f7f\u7528Docker\u6765\u7b80\u5316\u64cd\u4f5c\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"nb\">sudo <\/span>docker run <span class=\"nt\">-p<\/span> 9200:9200 <span class=\"nt\">-p<\/span> 9300:9300 <span class=\"nt\">--name<\/span> es <span class=\"nt\">-d<\/span> elasticsearch\r\n<\/code><\/pre>\n<h2>Elasticsearch \u63d2\u4ef6<\/h2>\n<h3>Elasticsearch-Kopf &#8211;&gt; Elasticsearch-Kopf<\/h3>\n<p>\u4e3a\u4e86\u65b9\u4fbf\u5730\u5728\u6d4f\u89c8\u5668\u4e0a\u8fdb\u884c\u7d22\u5f15\u7ef4\u62a4\uff0c\u6211\u4f1a\u5b89\u88c5kopf\u63d2\u4ef6\u3002<\/p>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">lmenezes\/elasticsearch-kopf<\/ul>\n<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul class=\"post-ul\">elasticsearch-kopf\u306e\u7d39\u4ecb\uff08\u6982\u8981\uff09 &#8211; @johtani\u306e\u65e5\u8a18 2nd<\/ul>\n<pre class=\"post-pre\"><code><span class=\"nb\">sudo <\/span>docker <span class=\"nb\">exec <\/span>es \/bin\/bash <span class=\"nt\">-c<\/span> <span class=\"s1\">'\/usr\/share\/elasticsearch\/bin\/plugin install lmenezes\/elasticsearch-kopf'<\/span>\r\n<\/code><\/pre>\n<h3>elasticsearch-head \u53ef\u4ee5\u7531Elasticsearch\u5b98\u65b9\u63d0\u4f9b\u7684\u56fe\u5f62\u7528\u6237\u754c\u9762\u5de5\u5177\u66ff\u4ee3\u3002<\/h3>\n<p>\u662f\u4e2a\u4eba\u559c\u597d\uff0c\u4f46\u4f7f\u7528head\u63d2\u4ef6\u53ef\u80fd\u4e5f\u53ef\u4ee5\u3002<\/p>\n<ul class=\"post-ul\">ElasticSearch Head<\/ul>\n<pre class=\"post-pre\"><code><span class=\"nb\">sudo <\/span>docker <span class=\"nb\">exec <\/span>es \/bin\/bash <span class=\"nt\">-c<\/span> <span class=\"s1\">'\/usr\/share\/elasticsearch\/bin\/plugin install mobz\/elasticsearch-head'<\/span>\r\n<\/code><\/pre>\n<h1>\u57fa\u4e8e\u4e2d\u56fd\u8bed\u5883\u7684\u4e2d\u6587\u91cd\u8ff0\uff1a<br \/>\n&#8220;Kibana&#8221; \u53ef\u4ee5\u662f &#8220;\u57fa\u90a6\u7eb3&#8221;<\/h1>\n<p>\u56e0\u4e3a\u4e0d\u4e86\u89e3Node\u7684\u73af\u5883\uff0c\u6240\u4ee5\u4f7f\u7528Docker\u6765\u7b80\u5316\u64cd\u4f5c\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"nb\">sudo <\/span>docker run <span class=\"nt\">-p<\/span> 5601:5601 <span class=\"nt\">--link<\/span> es:elasticsearch <span class=\"nt\">--name<\/span> kibana <span class=\"nt\">-d<\/span> kibana\r\n<\/code><\/pre>\n<p>\u4e3a\u4e86\u5c06Elasticsaerch\u96c6\u7fa4\u7684\u72b6\u6001\u8bbe\u4e3a\u7eff\u8272\uff0c\u5c06Kibana\u4f7f\u7528\u7684\u7d22\u5f15(.kibana)\u7684\u526f\u672c\u6570\u91cf\u8bbe\u4e3a0\u3002<\/p>\n<pre class=\"post-pre\"><code>curl <span class=\"nt\">-XPUT<\/span> <span class=\"s1\">'localhost:9200\/.kibana\/_settings'<\/span> <span class=\"nt\">-d<\/span> <span class=\"s1\">'\r\n{\r\n    \"index\" : {\r\n        \"number_of_replicas\" : 0\r\n    }\r\n}'<\/span>\r\n<\/code><\/pre>\n<h2>Kibana\u63d2\u4ef6 (Paraphrased in Chinese)<\/h2>\n<h3>\u6807\u7b7e\u4e91<\/h3>\n<ul class=\"post-ul\">stormpython\/tagcloud: Tag Cloud Plugin for Kibana 4<\/ul>\n<pre class=\"post-pre\"><code>docker <span class=\"nb\">exec <\/span>kibana \/bin\/bash <span class=\"nt\">-c<\/span> <span class=\"s1\">'\/opt\/kibana\/bin\/kibana plugin -i tagcloud -u https:\/\/github.com\/stormpython\/tagcloud\/archive\/master.zip'<\/span>\r\n<\/code><\/pre>\n<h3>\u70ed\u529b\u56fe<\/h3>\n<ul class=\"post-ul\">stormpython\/heatmap: Heatmap Plugin for Kibana 4<\/ul>\n<p>\u7531\u4e8e\u5728\u6d4b\u8bd5\u73af\u5883\u4e2d\u6210\u529f\u8fd0\u884c\uff0c\u6240\u4ee5\u6211\u4eec\u5c06\u4f7f\u7528\u9002\u7528\u4e8eKibana 4.3\u53ca\u4ee5\u4e0a\u7248\u672c\u7684Alpha\u7248\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"nb\">sudo <\/span>docker <span class=\"nb\">exec <\/span>kibana \/bin\/bash <span class=\"nt\">-c<\/span> <span class=\"s1\">'\/opt\/kibana\/bin\/kibana plugin -i heatmap -u https:\/\/github.com\/stormpython\/heatmap\/archive\/master.zip'<\/span>\r\n<\/code><\/pre>\n<h3>\u611f\u77e5 zh\u012b)<\/h3>\n<p>\u56e0\u4e3a\u60f3\u8981\u5728\u6d4f\u89c8\u5668\u4e2d\u8f7b\u677e\u8fdb\u884c\u6ce8\u518c\u6570\u636e\u7684\u786e\u8ba4\u7b49\u64cd\u4f5c\uff0c\u6211\u4eec\u4f1a\u6dfb\u52a0\u4e00\u4e2aSense\u529f\u80fd\u3002<\/p>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">Elasticsearch 2.0.0\u30ea\u30ea\u30fc\u30b9(\u65e5\u672c\u8a9e\u8a33) &#8211; @johtani\u306e\u65e5\u8a18 2nd<\/ul>\n<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul class=\"post-ul\">The Sense UI<\/ul>\n<pre class=\"post-pre\"><code>docker <span class=\"nb\">exec <\/span>kibana \/bin\/bash <span class=\"nt\">-c<\/span> <span class=\"s1\">'\/opt\/kibana\/bin\/kibana plugin --install elastic\/sense'<\/span>\r\n<\/code><\/pre>\n<p>\u4e3a\u4e86\u52a0\u8f7d\u63d2\u4ef6\uff0c\u6211\u4eec\u5c06\u91cd\u65b0\u542f\u52a8Kibana\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"nb\">sudo <\/span>docker retsart kibana\r\n<\/code><\/pre>\n<h1>Embulk \u539f\u751f\u7684\u4e2d\u6587\u53e5\u5b50\u7ffb\u8b6f\u3002<\/h1>\n<p>\u6211\u5011\u4f7f\u7528Embulk\u4f5c\u70ba\u5c07\u6578\u64da\u8f09\u5165Elasticsearch\u7684\u5de5\u5177\u3002<\/p>\n<ul class=\"post-ul\">http:\/\/www.embulk.org\/<\/ul>\n<p>\u7531\u4e8e\u9700\u8981Java\u8fd0\u884c\u65f6\u73af\u5883\uff0c\u56e0\u6b64\u672c\u6b21\u6211\u4eec\u5c06\u5b89\u88c5OpenJDK\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"nb\">sudo <\/span>apt-get <span class=\"nb\">install <\/span>openjdk-7-jdk\r\n<\/code><\/pre>\n<p>\u57fa\u672c\u4e0a\uff0c\u5b89\u88c5Embulk\u7684\u6b65\u9aa4\u53ef\u4ee5\u6309\u7167\u5b98\u65b9\u63d0\u4f9b\u7684\u6307\u5357\u8fdb\u884c\u3002<\/p>\n<ul class=\"post-ul\">Quick Start &#8211; Linux &amp; Mac &amp; BSD<\/ul>\n<p>\u56e0\u4e3a\u4e0b\u8f7d\u76ee\u6807\u5c06\u91cd\u5b9a\u5411\u5230\u4f7f\u7528SSL\u7684CDN\uff0c\u6240\u4ee5\u8bf7\u5728curl\u9009\u9879\u4e2d\u52a0\u4e0a&#8211;insecure (-k)\u9009\u9879\u3002<\/p>\n<pre class=\"post-pre\"><code>curl <span class=\"nt\">-k<\/span> <span class=\"nt\">--create-dirs<\/span> <span class=\"nt\">-o<\/span> ~\/.embulk\/bin\/embulk <span class=\"nt\">-L<\/span> <span class=\"s1\">'http:\/\/dl.embulk.org\/embulk-latest.jar'<\/span>\r\n<span class=\"nb\">chmod<\/span> +x ~\/.embulk\/bin\/embulk\r\n<\/code><\/pre>\n<p>\u5982\u679c\u8981\u5c06embulk\u7684\u8def\u5f84\u6c38\u4e45\u5316\uff0c\u6309\u7167\u6b65\u9aa4\u8fdb\u884c\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"nb\">echo<\/span> <span class=\"s1\">'export PATH=\"$HOME\/.embulk\/bin:$PATH\"'<\/span> <span class=\"o\">&gt;&gt;<\/span> ~\/.bashrc\r\n<span class=\"nb\">source<\/span> ~\/.bashrc\r\n<\/code><\/pre>\n<p>\u8fd9\u6b21\u53ea\u4f1a\u6682\u65f6\u8bbe\u5b9a\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"nb\">export <\/span><span class=\"nv\">PATH<\/span><span class=\"o\">=<\/span><span class=\"nv\">$HOME<\/span>\/.embulk\/bin:<span class=\"nv\">$PATH<\/span>\r\n<\/code><\/pre>\n<h2>Embulk\u63d2\u4ef6<\/h2>\n<h3>\u6dfb\u52a0\u65f6\u95f4\u7684Embulk\u8fc7\u6ee4\u5668<\/h3>\n<p>\u8fdb\u884c\u65f6\u95f4\u6233\u7c7b\u578b\u8f6c\u6362\u7b49\u64cd\u4f5c\u7684\u63d2\u4ef6\u3002<\/p>\n<ul class=\"post-ul\">treasure-data\/embulk-filter-add_time<\/ul>\n<pre class=\"post-pre\"><code>embulk gem <span class=\"nb\">install <\/span>embulk-filter-add_time\r\n<\/code><\/pre>\n<p>\u7528\u4e8e\u5c06 timestamp \u7c7b\u578b\u590d\u5236\u4e3a long \u7c7b\u578b\u3002<\/p>\n<h3>\u6570\u636e\u6d41\u8fc7\u6ee4\u5668-\u5217<\/h3>\n<p>\u7528\u4e8e\u6267\u884c\u6dfb\u52a0\u548c\u5220\u9664\u5217\u7684\u63d2\u4ef6\u3002<\/p>\n<ul class=\"post-ul\">sonots\/embulk-filter-column<\/ul>\n<pre class=\"post-pre\"><code>embulk gem <span class=\"nb\">install <\/span>embulk-filter-column\r\n<\/code><\/pre>\n<p>\u7528\u4e8e\u5c06\u591a\u4e2a\u5217\u590d\u5236\u5230\u540e\u7eed\u8fc7\u6ee4\u5668\u6240\u4f7f\u7528\u7684\u5217\u4e2d\u3002<\/p>\n<h3>\u8bc4\u4f30\u8fc7\u6ee4\u5668-Embulk<\/h3>\n<p>\u4e00\u79cd\u80fd\u591f\u5728Ruby\u8bc4\u4f30\u8868\u8fbe\u5f0f\u4e2d\u4fee\u6539\u503c\u7684\u63d2\u4ef6\u3002<\/p>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">embulk-filter-eval \u3068\u3044\u3046\u30d5\u30a3\u30eb\u30bf\u30fc\u30d7\u30e9\u30b0\u30a4\u30f3\u66f8\u3044\u305f &#8211; scramble cadenza<\/ul>\n<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">mgi166\/embulk-filter-eval<\/ul>\n<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul class=\"post-ul\">A-AUTO 50 \u958b\u767a\u8005\u30d6\u30ed\u30b0: embulk-filter-eval\u3067\u3069\u3093\u306a\u30c7\u30fc\u30bf\u5909\u63db\u304c\u3067\u304d\u308b\u306e\u304b\u8a66\u3057\u3066\u307f\u308b<\/ul>\n<p>\u4f7f\u7528\u65f6\u95f4\u6233\u8fdb\u884c\u661f\u671f\u548c\u65f6\u95f4\u8f6c\u6362\uff0c\u6216\u8005\u7528\u4e8e\u4ece\u547d\u4ee4\u884c\u4e2d\u5206\u79bb\u547d\u4ee4\u548c\u53c2\u6570\u3002<\/p>\n<pre class=\"post-pre\"><code>embulk gem <span class=\"nb\">install <\/span>embulk-filter-eval\r\n<\/code><\/pre>\n<h3>\u63d2\u5165\u8fc7\u6ee4\u5668<\/h3>\n<p>\u5411\u4efb\u610f\u7684\u5217\u4e2d\u6dfb\u52a0\u6307\u5b9a\u7684\u503c\u7684\u63d2\u4ef6\u3002<\/p>\n<ul class=\"post-ul\">muziyoshiz\/embulk-filter-insert<\/ul>\n<p>\u4e3a\u4e86\u8bc6\u522b\u662f\u54ea\u4e2a\u4e3b\u673a\u7684\u5386\u53f2\u6587\u4ef6\uff0c\u5c06\u4e3b\u673a\u540d\u4f5c\u4e3aliquid\u6a21\u677f\u7684\u53d8\u91cf\u6765\u4f7f\u7528\u3002<\/p>\n<pre class=\"post-pre\"><code>embulk gem <span class=\"nb\">install <\/span>embulk-filter-insert\r\n<\/code><\/pre>\n<h3>\u884c\u8fc7\u6ee4\u63d2\u4ef6<\/h3>\n<p>\u6839\u636e\u6307\u5b9a\u7684\u6761\u4ef6\u7b5b\u9009\u6570\u636e\u7684\u63d2\u4ef6\u3002<\/p>\n<ul class=\"post-ul\">sonots\/embulk-filter-row<\/ul>\n<p>\u4e3a\u4e86\u6392\u9664\u5f02\u5e38\u503c\u4f7f\u7528\uff08\u7c7b\u4f3c\u4e8egrep -v\uff09\u3002<\/p>\n<pre class=\"post-pre\"><code>embulk gem <span class=\"nb\">install <\/span>embulk-filter-row\r\n<\/code><\/pre>\n<h3>\u5c06embulk-filter-split\u7ffb\u8bd1\u6210\u4e2d\u6587\u7684\u4e00\u4e2a\u9009\u9879 \uff1a<\/h3>\n<p>\u6570\u636e\u6279\u91cf\u5904\u7406\u5de5\u5177\u7684\u5206\u5272\u8fc7\u6ee4\u5668<\/p>\n<p>\u5206\u5272\u63d2\u4ef6\u53ef\u6839\u636e\u6307\u5b9a\u7684\u6761\u4ef6\u5c06\u6570\u636e\u5206\u5272\u6210\u591a\u4e2a\u5143\u7d20\u3002<\/p>\n<ul class=\"post-ul\">toyama0919\/embulk-filter-split<\/ul>\n<p>\u4f7f\u7528\u5206\u53f7\u53ef\u4ee5\u5c06\u5728\u4e00\u884c\u4e0a\u6267\u884c\u7684\u591a\u4e2a\u547d\u4ee4\u6216\u901a\u8fc7\u7ba1\u9053\u8fde\u63a5\u5728\u4e00\u8d77\u7684\u547d\u4ee4\u5206\u9694\u5f00\u6765\u3002<\/p>\n<pre class=\"post-pre\"><code>embulk gem <span class=\"nb\">install <\/span>embulk-filter-split\r\n<\/code><\/pre>\n<h3>embulk-output-elasticsearch -&gt; \u5f39\u6027\u641c\u7d22\u8f93\u51fa-Embulk<\/h3>\n<p>\u5c06\u8f93\u51fa\u63d2\u4ef6\u8fde\u63a5\u5230Elasticsearch\u3002<\/p>\n<ul class=\"post-ul\">muga\/embulk-output-elasticsearch<\/ul>\n<pre class=\"post-pre\"><code>embulk gem <span class=\"nb\">install <\/span>embulk-output-elasticsearch\r\n<\/code><\/pre>\n<h1>\u6570\u636e\u52a0\u8f7d<\/h1>\n<h2>\u6ce8\u518c\u7d22\u5f15\u6a21\u677f<\/h2>\n<p>\u5c06\u672c\u6b21\u521b\u5efa\u7684\u7d22\u5f15\u5b9a\u4e49\u4f5c\u4e3a\u7d22\u5f15\u6a21\u677f\u8fdb\u884c\u6ce8\u518c\u3002<\/p>\n<ul class=\"post-ul\">Index Templates<\/ul>\n<p>\u5b9a\u4e49\u5982\u4e0b\u3002<\/p>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">Kibana\u3067\u306e\u8a2d\u5b9a\u3092\u624b\u8efd\u306b\u3059\u308b\u305f\u3081\u30a4\u30f3\u30c7\u30c3\u30af\u30b9\u540d\u306flogstash-command_history<\/ul>\n<\/li>\n<\/ul>\n<p>\u304a\u8a66\u3057\u74b0\u5883\u306a\u306e\u3067\u30ec\u30d7\u30ea\u30ab\u6570\u306f0<br \/>\n\u5168\u6587\u691c\u7d22\u306f\u4e0d\u8981\u306a\u306e\u3067_all\u30d5\u30a3\u30fc\u30eb\u30c9\u306f\u4f7f\u7528\u3057\u306a\u3044<br \/>\n\u30d5\u30a3\u30fc\u30eb\u30c9\u5b9a\u7fa9<\/p>\n<p>@timestamp \u30b3\u30de\u30f3\u30c9\u5b9f\u884c\u6642\u523b\u3002Kibana\u3067\u8b58\u5225\u3057\u3084\u3059\u3044\u3088\u3046\u306b\u3053\u306e\u540d\u524d\u3092\u4f7f\u3044\u307e\u3059<\/p>\n<p>@wday \u30b3\u30de\u30f3\u30c9\u5b9f\u884c\u6642\u523b\u306e\u66dc\u65e5(1:\u6708\u66dc\u301c7:\u65e5\u66dc)<\/p>\n<p>@hour \u30b3\u30de\u30f3\u30c9\u5b9f\u884c\u6642\u523b\u306e\u6642\u9593<\/p>\n<p>@host \u30b7\u30a7\u30eb\u5b9f\u884c\u30db\u30b9\u30c8\u540d<\/p>\n<p>@shell \u30b7\u30a7\u30eb\u7a2e\u5225<\/p>\n<p>@command \u30b3\u30de\u30f3\u30c9\u30e9\u30a4\u30f3\uff08Analyze\u3057\u306a\u3044\u3082\u306e\u3092@command.raw\uff09<\/p>\n<p>command \u30b3\u30de\u30f3\u30c9\u540d<\/p>\n<p>args \u30b3\u30de\u30f3\u30c9\u5f15\u6570<\/p>\n<pre class=\"post-pre\"><code>curl <span class=\"nt\">-XPUT<\/span> localhost:9200\/_template\/command_history_template <span class=\"nt\">-d<\/span><span class=\"s1\">'\r\n{\r\n  \"template\": \"logstash-*\",\r\n  \"settings\": { \"number_of_replicas\" : 0 },\r\n  \"mappings\": {\r\n    \"command_history\": {\r\n      \"_all\": { \"enabled\": false },\r\n      \"properties\": {\r\n        \"@timestamp\": {\r\n          \"type\": \"date\"\r\n        },\r\n        \"@wday\": {\r\n          \"type\": \"byte\"\r\n        },\r\n        \"@hour\": {\r\n          \"type\": \"byte\"\r\n        },\r\n        \"@host\": {\r\n          \"index\": \"not_analyzed\",\r\n          \"type\": \"string\"\r\n        },\r\n        \"@shell\": {\r\n          \"index\": \"not_analyzed\",\r\n          \"type\": \"string\"\r\n        },\r\n        \"@command\": {\r\n          \"type\": \"string\",\r\n          \"fields\": {\r\n            \"raw\": {\r\n              \"index\": \"not_analyzed\",\r\n              \"type\": \"string\"\r\n            }\r\n          }\r\n        },\r\n        \"command\": {\r\n          \"index\": \"not_analyzed\",\r\n          \"type\": \"string\"\r\n        },\r\n        \"args\": {\r\n          \"type\": \"string\"\r\n          }\r\n        }\r\n      }\r\n    }\r\n  }\r\n}'<\/span>\r\n<\/code><\/pre>\n<h2>Embulk\u7684\u914d\u7f6e<\/h2>\n<p>\u7531\u65bc\u4f7f\u7528Embulk\u63d2\u4ef6\u5c07\u6240\u6709\u5167\u5bb9\u8f49\u63db\u70ba\u6240\u9700\u683c\u5f0f\u4f3c\u4e4e\u5f88\u56f0\u96e3\uff0c\u6240\u4ee5\u6211\u5011\u6c7a\u5b9a\u5728Shell\u4e2d\u8655\u7406\u6578\u64da\u4e26\u5c07\u5176\u4f5c\u70ba\u6a19\u6e96\u8f38\u5165\u8b80\u5165\u3002<\/p>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">\u5165\u529b\u306fTSV\u3092\u6a19\u6e96\u5165\u529b\u304b\u3089<\/ul>\n<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">\u5f15\u6570\u3067\u30db\u30b9\u30c8\u540d\u3068\u30b7\u30a7\u30eb\u3092\u4e0e\u3048\u308b<\/ul>\n<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul class=\"post-ul\">\u30bf\u30a4\u30e0\u30b9\u30bf\u30f3\u30d7\u304c\u4fdd\u6301\u3055\u308c\u3066\u3044\u306a\u3044\u30d2\u30b9\u30c8\u30ea\u3092\u9664\u304f\u3088\u3046\u306b\u3057\u3066\u3044\u307e\u3059\u3002(1327083640 2012-01-21 03:20:40)<\/ul>\n<pre class=\"post-pre\"><code><span class=\"na\">in<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">file<\/span>\r\n  <span class=\"na\">path_prefix<\/span><span class=\"pi\">:<\/span> <span class=\"s\">\/dev\/stdin<\/span>\r\n  <span class=\"na\">parser<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">csv<\/span>\r\n    <span class=\"na\">delimiter<\/span><span class=\"pi\">:<\/span> <span class=\"s2\">\"<\/span><span class=\"se\">\\t<\/span><span class=\"s\">\"<\/span>\r\n    <span class=\"na\">columns<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"pi\">-<\/span> <span class=\"pi\">{<\/span><span class=\"nv\">name<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@timestamp'<\/span><span class=\"pi\">,<\/span> <span class=\"nv\">type<\/span><span class=\"pi\">:<\/span> <span class=\"nv\">timestamp<\/span><span class=\"pi\">,<\/span> <span class=\"nv\">format<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">%s'<\/span><span class=\"pi\">}<\/span>\r\n    <span class=\"pi\">-<\/span> <span class=\"pi\">{<\/span><span class=\"nv\">name<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@command'<\/span><span class=\"pi\">,<\/span> <span class=\"nv\">type<\/span><span class=\"pi\">:<\/span> <span class=\"nv\">string<\/span><span class=\"pi\">}<\/span>\r\n\r\n<span class=\"na\">filters<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"pi\">-<\/span> <span class=\"na\">type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">row<\/span>\r\n    <span class=\"na\">conditions<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"pi\">{<\/span><span class=\"nv\">column<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@timestamp'<\/span><span class=\"pi\">,<\/span> <span class=\"nv\">operator<\/span><span class=\"pi\">:<\/span> <span class=\"s2\">\"<\/span><span class=\"s\">&gt;\"<\/span><span class=\"pi\">,<\/span> <span class=\"nv\">argument<\/span><span class=\"pi\">:<\/span> <span class=\"s2\">\"<\/span><span class=\"s\">1327083640\"<\/span><span class=\"pi\">,<\/span> <span class=\"nv\">format<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">%s'<\/span> <span class=\"pi\">}<\/span>\r\n\r\n  <span class=\"pi\">-<\/span> <span class=\"na\">type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">insert<\/span>\r\n    <span class=\"na\">columns<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@host'<\/span><span class=\"pi\">:<\/span> <span class=\"pi\">{{<\/span> <span class=\"nv\">env.host<\/span> <span class=\"pi\">}}<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@shell'<\/span><span class=\"pi\">:<\/span> <span class=\"pi\">{{<\/span> <span class=\"nv\">env.shell<\/span> <span class=\"pi\">}}<\/span>\r\n    <span class=\"na\">at<\/span><span class=\"pi\">:<\/span> <span class=\"m\">1<\/span>\r\n\r\n  <span class=\"pi\">-<\/span> <span class=\"na\">type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">split<\/span>\r\n    <span class=\"na\">delimiter<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">|'<\/span>\r\n    <span class=\"na\">keep_input<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n    <span class=\"na\">target_key<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@command'<\/span>\r\n\r\n  <span class=\"pi\">-<\/span> <span class=\"na\">type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">add_time<\/span>\r\n    <span class=\"na\">to_column<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">name<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@wday'<\/span>\r\n      <span class=\"na\">type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">long<\/span>\r\n    <span class=\"na\">from_column<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">name<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@timestamp'<\/span>\r\n\r\n  <span class=\"pi\">-<\/span> <span class=\"na\">type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">column<\/span>\r\n    <span class=\"na\">add_columns<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"pi\">{<\/span><span class=\"nv\">name<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@hour'<\/span><span class=\"pi\">,<\/span> <span class=\"nv\">src<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@wday'<\/span> <span class=\"pi\">}<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"pi\">{<\/span><span class=\"nv\">name<\/span><span class=\"pi\">:<\/span> <span class=\"nv\">command<\/span><span class=\"pi\">,<\/span> <span class=\"nv\">src<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@command'<\/span> <span class=\"pi\">}<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"pi\">{<\/span><span class=\"nv\">name<\/span><span class=\"pi\">:<\/span> <span class=\"nv\">args<\/span><span class=\"pi\">,<\/span> <span class=\"nv\">src<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@command'<\/span> <span class=\"pi\">}<\/span>\r\n\r\n  <span class=\"pi\">-<\/span> <span class=\"na\">type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">eval<\/span>\r\n    <span class=\"na\">eval_columns<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@wday'<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Time.at(value).strftime('%u')<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">@hour'<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Time.at(value).strftime('%H')<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"na\">command<\/span><span class=\"pi\">:<\/span> <span class=\"s\">value.sub(\/^\\s*(?:(?:env )?[^=]+=\\S+ )*(\\S+).*$\/, '\\1')<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"na\">args<\/span><span class=\"pi\">:<\/span> <span class=\"s\">if value.match(\/^\\s*\\S+ (.*?)\\s*$\/) then<\/span>\r\n                <span class=\"s\">value=$1<\/span>\r\n              <span class=\"s\">else<\/span>\r\n                <span class=\"s\">value=nil<\/span>\r\n              <span class=\"s\">end<\/span>\r\n\r\n<span class=\"na\">out<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">elasticsearch<\/span>\r\n  <span class=\"na\">cluster_name<\/span><span class=\"pi\">:<\/span> <span class=\"s\">elasticsearch<\/span>\r\n  <span class=\"na\">nodes<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"pi\">-<\/span> <span class=\"pi\">{<\/span><span class=\"nv\">host<\/span><span class=\"pi\">:<\/span> <span class=\"nv\">localhost<\/span><span class=\"pi\">,<\/span> <span class=\"nv\">port<\/span><span class=\"pi\">:<\/span> <span class=\"nv\">9300<\/span><span class=\"pi\">}<\/span>\r\n  <span class=\"na\">index<\/span><span class=\"pi\">:<\/span> <span class=\"s\">logstash-command_history<\/span>\r\n  <span class=\"na\">index_type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">command_history<\/span>\r\n<\/code><\/pre>\n<h2>\u52a0\u8f7d\u5386\u53f2\u6587\u4ef6\uff08bash\uff09<\/h2>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">awk\u3067\u6642\u523b\u6587\u5b57\u5217\u3068\u30b3\u30de\u30f3\u30c9\u30e9\u30a4\u30f3\u30921\u884c\u306b\u3057\u3066\u30bf\u30d6\u533a\u5207\u308a\u306b\u3057\u307e\u3059<\/ul>\n<\/li>\n<\/ul>\n<p>file \u306b\u4efb\u610f\u306e.bash_history\u306e\u30d1\u30b9<\/p>\n<p>host \u306b\u4efb\u610f\u306e\u30db\u30b9\u30c8\u540d<\/p>\n<pre class=\"post-pre\"><code><span class=\"nv\">file<\/span><span class=\"o\">=<\/span>\/path\/to\/bash_history\r\n<span class=\"nv\">host<\/span><span class=\"o\">=<\/span>somehost\r\n\r\n<span class=\"nb\">cat<\/span> <span class=\"nv\">$file<\/span> | <span class=\"nb\">awk<\/span> <span class=\"s1\">'{getline ts; print substr(ts,2)\"\\t\"$0}'<\/span> |\r\n  <span class=\"nv\">host<\/span><span class=\"o\">=<\/span><span class=\"nv\">$host<\/span> <span class=\"nv\">shell<\/span><span class=\"o\">=<\/span>bash embulk run .\/command_history.yml.liquid\r\n<\/code><\/pre>\n<h2>\u52a0\u8f7dHistfile\uff08Zsh\uff09\u3002<\/h2>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">sed\u3067\u30bf\u30d6\u533a\u5207\u308a\u306b\u3057\u307e\u3059\uff08\u8907\u6570\u884c\u306b\u306f\u5bfe\u5fdc\u3057\u307e\u305b\u3093\uff09<\/ul>\n<\/li>\n<\/ul>\n<p>file \u306b\u4efb\u610f\u306e.zsh_history\u306e\u30d1\u30b9<\/p>\n<p>host \u306b\u4efb\u610f\u306e\u30db\u30b9\u30c8\u540d<\/p>\n<pre class=\"post-pre\"><code><span class=\"nv\">file<\/span><span class=\"o\">=<\/span>\/path\/to\/bash_history\r\n<span class=\"nv\">host<\/span><span class=\"o\">=<\/span>somehost\r\n\r\n<span class=\"nb\">cat<\/span> <span class=\"nv\">$file<\/span> | <span class=\"nb\">cut<\/span> <span class=\"nt\">-b<\/span> 3- | <span class=\"nb\">sed<\/span> <span class=\"nt\">-e<\/span> <span class=\"s1\">'s\/:0;\/\\t\/'<\/span> |\r\n  <span class=\"nv\">host<\/span><span class=\"o\">=<\/span><span class=\"nv\">$host<\/span> <span class=\"nv\">shell<\/span><span class=\"o\">=<\/span>zsh embulk run .\/command_history.yml.liquid\r\n<\/code><\/pre>\n<h1>\u6700\u540e<\/h1>\n<p>\u8fd9\u7bc7\u6587\u7ae0\u662f\u53bb\u5e74\u5e74\u5e95\u5f00\u59cb\u5199\u7684\uff0c\u4f46\u56e0\u4e3a\u4e00\u4e9b\u4e8b\u60c5\u800c\u5ef6\u8fdf\u53d1\u5e03\uff0c\u671f\u95f4 embulk-output-plugin\u6b63\u5f0f\u652f\u6301\u4e86Elasticsearch 2\u7cfb\u5217\uff0cembulk-filter_add_time\u4e5f\u88ab\u521b\u5efa\u4e86\uff0c\u4f7f\u5f97\u5411Elasticsearch\u6ce8\u518c\u53d8\u5f97\u66f4\u52a0\u7b80\u4fbf\u3002<\/p>\n<p>\u53e6\u5916\uff0c\u7531\u65bcKibana\u4e2d\u7684\u71b1\u5ea6\u5716\u63d2\u4ef6\u5df2\u7d93\u8655\u65bc Alpha \u7248\u672c\u4e26\u53ef\u904b\u884c\uff0c\u56e0\u6b64\u6211\u5011\u53ef\u4ee5\u77e5\u9053\u4e0d\u9700\u8981\u5c07\u661f\u671f\u5e7e\u548c\u6642\u9593\u6bb5\u7684\u67f1\u72c0\u5716\u4e26\u6392\u3002<\/p>\n<p>\u800c\u4e14\uff0c\u4ec5\u9650\u4e8e\u5bb6\u91cc\u4f7f\u7528\u7684\u4e3b\u673a\uff0c\u5468\u672b\u7684\u6d3b\u52a8\u65f6\u95f4\u4e5f\u53d8\u5f97\u4e0d\u89c4\u5f8b\u4e86\u5462\u3002\u3002\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d457337434c4406ca28b1\/126-0.png\" alt=\"\u30b7\u30a7\u30eb\u306e\u30d2\u30b9\u30c8\u30ea\u306e\u53ef\u8996\u5316\u7d50\u679c(@home)\" \/><\/div>\n<p>\u4e0d\u8981\u5c06\u5176\u79f0\u4e3a\u5927\u6570\u636e\uff0c\u60a8\u4e5f\u8bb8\u53ef\u4ee5\u5c1d\u8bd5\u5728Elastic\u73af\u5883\u4e2d\u5c06\u60a8\u624b\u5934\u7684\u5386\u53f2\u6570\u636e\u53ef\u89c6\u5316\uff0c\u53ef\u80fd\u4f1a\u6709\u65b0\u7684\u53d1\u73b0\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u6700\u521d \u5f53\u6211\u5728\u63a2\u7d22\u5404\u79cd\u6570\u636e\u53ef\u89c6\u5316\u7684\u53ef\u80fd\u6027\u65f6\uff0c\u6211\u627e\u5230\u4e86\u4e00\u7bc7\u975e\u5e38\u5438\u5f15\u4eba\u7684\u6587\u7ae0\u3002 Vim\u3067\u306e\u4f5c\u696d\u3092Kibana\u3067\u53ef\u8996\u5316 [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-41173","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v21.5 (Yoast SEO v21.5) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>\u6211\u5c1d\u8bd5\u5728Kibana\u4e0a\u5c06Shell\u7684\u5386\u53f2\u53ef\u89c6\u5316 - Blog - Silicon Cloud<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.silicloud.com\/zh\/blog\/\u6211\u5c1d\u8bd5\u5728kibana\u4e0a\u5c06shell\u7684\u5386\u53f2\u53ef\u89c6\u5316\u3002\/\" \/>\n<meta property=\"og:locale\" content=\"zh_CN\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\u6211\u5c1d\u8bd5\u5728Kibana\u4e0a\u5c06Shell\u7684\u5386\u53f2\u53ef\u89c6\u5316\" \/>\n<meta property=\"og:description\" content=\"\u6700\u521d \u5f53\u6211\u5728\u63a2\u7d22\u5404\u79cd\u6570\u636e\u53ef\u89c6\u5316\u7684\u53ef\u80fd\u6027\u65f6\uff0c\u6211\u627e\u5230\u4e86\u4e00\u7bc7\u975e\u5e38\u5438\u5f15\u4eba\u7684\u6587\u7ae0\u3002 Vim\u3067\u306e\u4f5c\u696d\u3092Kibana\u3067\u53ef\u8996\u5316 [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.silicloud.com\/zh\/blog\/\u6211\u5c1d\u8bd5\u5728kibana\u4e0a\u5c06shell\u7684\u5386\u53f2\u53ef\u89c6\u5316\u3002\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog - Silicon Cloud\" \/>\n<meta property=\"article:published_time\" content=\"2023-12-22T12:28:37+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-04-30T07:55:53+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d457337434c4406ca28b1\/12-0.png\" \/>\n<meta name=\"author\" content=\"\u6e05, \u5b87\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u4f5c\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"\u6e05, \u5b87\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 \u5206\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/\",\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/\",\"name\":\"\u6211\u5c1d\u8bd5\u5728Kibana\u4e0a\u5c06Shell\u7684\u5386\u53f2\u53ef\u89c6\u5316 - Blog - Silicon Cloud\",\"isPartOf\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#website\"},\"datePublished\":\"2023-12-22T12:28:37+00:00\",\"dateModified\":\"2024-04-30T07:55:53+00:00\",\"author\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/1a6ecd3d914d22a5ac32791ffc1fbd8e\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#breadcrumb\"},\"inLanguage\":\"zh-Hans\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"\u9996\u9875\",\"item\":\"https:\/\/www.silicloud.com\/zh\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\u6211\u5c1d\u8bd5\u5728Kibana\u4e0a\u5c06Shell\u7684\u5386\u53f2\u53ef\u89c6\u5316\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#website\",\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/\",\"name\":\"Blog - Silicon Cloud\",\"description\":\"\",\"inLanguage\":\"zh-Hans\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/1a6ecd3d914d22a5ac32791ffc1fbd8e\",\"name\":\"\u6e05, \u5b87\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/4b2016c18459a605fc469c7566608f5686491baa112d0871ee613f61b7210565?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/4b2016c18459a605fc469c7566608f5686491baa112d0871ee613f61b7210565?s=96&d=mm&r=g\",\"caption\":\"\u6e05, \u5b87\"},\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/author\/qingyu\/\"},{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#local-main-organization-logo\",\"url\":\"\",\"contentUrl\":\"\",\"caption\":\"Blog - Silicon Cloud\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"\u6211\u5c1d\u8bd5\u5728Kibana\u4e0a\u5c06Shell\u7684\u5386\u53f2\u53ef\u89c6\u5316 - Blog - Silicon Cloud","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.silicloud.com\/zh\/blog\/\u6211\u5c1d\u8bd5\u5728kibana\u4e0a\u5c06shell\u7684\u5386\u53f2\u53ef\u89c6\u5316\u3002\/","og_locale":"zh_CN","og_type":"article","og_title":"\u6211\u5c1d\u8bd5\u5728Kibana\u4e0a\u5c06Shell\u7684\u5386\u53f2\u53ef\u89c6\u5316","og_description":"\u6700\u521d \u5f53\u6211\u5728\u63a2\u7d22\u5404\u79cd\u6570\u636e\u53ef\u89c6\u5316\u7684\u53ef\u80fd\u6027\u65f6\uff0c\u6211\u627e\u5230\u4e86\u4e00\u7bc7\u975e\u5e38\u5438\u5f15\u4eba\u7684\u6587\u7ae0\u3002 Vim\u3067\u306e\u4f5c\u696d\u3092Kibana\u3067\u53ef\u8996\u5316 [&hellip;]","og_url":"https:\/\/www.silicloud.com\/zh\/blog\/\u6211\u5c1d\u8bd5\u5728kibana\u4e0a\u5c06shell\u7684\u5386\u53f2\u53ef\u89c6\u5316\u3002\/","og_site_name":"Blog - Silicon Cloud","article_published_time":"2023-12-22T12:28:37+00:00","article_modified_time":"2024-04-30T07:55:53+00:00","og_image":[{"url":"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d457337434c4406ca28b1\/12-0.png"}],"author":"\u6e05, \u5b87","twitter_card":"summary_large_image","twitter_misc":{"\u4f5c\u8005":"\u6e05, \u5b87","\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4":"4 \u5206"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/","url":"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/","name":"\u6211\u5c1d\u8bd5\u5728Kibana\u4e0a\u5c06Shell\u7684\u5386\u53f2\u53ef\u89c6\u5316 - Blog - Silicon Cloud","isPartOf":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/#website"},"datePublished":"2023-12-22T12:28:37+00:00","dateModified":"2024-04-30T07:55:53+00:00","author":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/1a6ecd3d914d22a5ac32791ffc1fbd8e"},"breadcrumb":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#breadcrumb"},"inLanguage":"zh-Hans","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"\u9996\u9875","item":"https:\/\/www.silicloud.com\/zh\/blog\/"},{"@type":"ListItem","position":2,"name":"\u6211\u5c1d\u8bd5\u5728Kibana\u4e0a\u5c06Shell\u7684\u5386\u53f2\u53ef\u89c6\u5316"}]},{"@type":"WebSite","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#website","url":"https:\/\/www.silicloud.com\/zh\/blog\/","name":"Blog - Silicon Cloud","description":"","inLanguage":"zh-Hans"},{"@type":"Person","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/1a6ecd3d914d22a5ac32791ffc1fbd8e","name":"\u6e05, \u5b87","image":{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/4b2016c18459a605fc469c7566608f5686491baa112d0871ee613f61b7210565?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/4b2016c18459a605fc469c7566608f5686491baa112d0871ee613f61b7210565?s=96&d=mm&r=g","caption":"\u6e05, \u5b87"},"url":"https:\/\/www.silicloud.com\/zh\/blog\/author\/qingyu\/"},{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e6%88%91%e5%b0%9d%e8%af%95%e5%9c%a8kibana%e4%b8%8a%e5%b0%86shell%e7%9a%84%e5%8e%86%e5%8f%b2%e5%8f%af%e8%a7%86%e5%8c%96%e3%80%82\/#local-main-organization-logo","url":"","contentUrl":"","caption":"Blog - Silicon Cloud"}]}},"_links":{"self":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/41173","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/comments?post=41173"}],"version-history":[{"count":2,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/41173\/revisions"}],"predecessor-version":[{"id":92855,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/41173\/revisions\/92855"}],"wp:attachment":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/media?parent=41173"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/categories?post=41173"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/tags?post=41173"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}