Skip to content

Latest commit

 

History

History
110 lines (82 loc) · 2.42 KB

Kibana.md

File metadata and controls

110 lines (82 loc) · 2.42 KB
Raw

Logging with Elasticsearch and Kibana

⚠️ Use Grafana instead.

Create namespace for logging:

kubectl create namespace logging

Add helm repo:

helm repo add elastic https://helm.elastic.co
helm repo update

Add a test version of Elasticsearch, no storage is configured:

helm install elasticsearch elastic/elasticsearch -n logging --set replicas=1 --set persistence.enabled=false

Wait until the pod starts:

kubectl get pods -n logging

Install Kibana and wait until it starts:

helm install kibana elastic/kibana -n logging 
kubectl get pods -n logging

Check services:

kubectl get pods -n logging

Add port-forward so that you can access Kibana:

kubectl port-forward service/kibana-kibana 5601:5601 -n logging --address=0.0.0.0
kubectl port-forward service/elasticsearch-master 9200:9200 -n logging --address=0.0.0.0

Serilog setup

For Serilog, use the configuration:

.WriteTo.Elasticsearch(new Serilog.Sinks.Elasticsearch.ElasticsearchSinkOptions(new Uri("http://localhost:9200")) {
    AutoRegisterTemplate = true,
    AutoRegisterTemplateVersion = AutoRegisterTemplateVersion.ESv7,
    IndexFormat = $"{Assembly.GetExecutingAssembly().GetName().Name.ToLower()}-{DateTime.UtcNow:yyyy-MM}"
})

or appsettings.json:

"WriteTo": [{
    "Name": "Elasticsearch",
    "Args": {
      "nodeUris": "http://localhost:9200",
      "indexFormat": "myapplication-{0:yyyy.MM}",
      "autoRegisterTemplate": true,
      "autoRegisterTemplateVersion": "ESv7"
    }
}]

Remainder:

CreateHostBuilder(args).Build().Run();

// Serilog + ElasticSearch are not the best friends.
Log.CloseAndFlush();

Kibana setup

  1. Check indices: http://localhost:5601/app/management/data/index_management/indices
  2. Add index pattern: http://localhost:5601/app/management/kibana/indexPatterns
  3. You can access log items in Kibana through: http://localhost:5601/app/discover

Localhost

wget -qO - https://artifacts.elastic.co/GPG-KEY-elasticsearch | sudo apt-key add -
apt update
apt install elasticsearch kibana
systemctl enable elasticsearch.service
systemctl start elasticsearch.service
systemctl enable kibana.service
systemctl start kibana.service
apt install metricbeat filebeat
filebeat modules enable system
filebeat setup
filebeat -e
systemctl enable filebeat.service
systemctl start filebeat.service
systemctl enable metricbeat.service
systemctl start metricbeat.service