Docker Stack to deploy dynamic logging for Docker Swarm
Docker Swarm Monitoring

Docker Stack compose file to deploy dynamic logging for Docker Swarm. This stack deploys the following services:

  • Elasticsearch: Database to store the log data and query for it.
  • Logstash: Log processor that ingests data from multiple sources and feeds it to Elasticsearch.
  • Logspout: Logspout is deployed to all hosts to collect the logs from docker daemon and feed it to logstash.
  • Kibana: Web UI to display Elasticsearch data.

Run Instructions

Setup a Docker Swarm with the Docker Swarm Mode. From the swarm manager, deploy the stack with the command,

docker stack deploy -c docker-stack.yml elk

Open Kibana in your browser with the following command:

open http://`docker-machine ip manager`

In Kibana, create a new index logstash-* with @timestamp as the Time-field name.