window10安装ELK8并记录springboot日志
目录
1.下载免安装包并解压:
2.安装和启动Elasticsearch
修改elasticsearch.yml文件
-
network.host: 127.0.0.1
-
http.port: 9200
-
http.cors.enabled: true
-
http.cors.allow-origin: "*"
-
ingest.geoip.downloader.enabled: false
启动:双击elasticsearch.bat
首次启动控制台会出现账号密码:
将账号密码保存到elasticsearch.yml中,防止以后忘记(个人习惯)
3.安装和启动Logstash
修改logstash.yml
-
xpack.monitoring.enabled: true
-
xpack.monitoring.elasticsearch.username: elastic
-
xpack.monitoring.elasticsearch.password: N0A xc1-vUvLf _3s25J
-
#xpack.monitoring.elasticsearch.proxy: ["http://proxy:port"]
-
xpack.monitoring.elasticsearch.hosts: ["https://127.0.0.1:9200"]
-
# an alternative to hosts username/password settings is to use cloud_id/cloud_auth
-
#xpack.monitoring.elasticsearch.cloud_id: monitoring_cluster_id:xxxxxxxxxx
-
#xpack.monitoring.elasticsearch.cloud_auth: logstash_system:password
-
# another authentication alternative is to use an Elasticsearch API key
-
#xpack.monitoring.elasticsearch.api_key: "id:api_key"
-
xpack.monitoring.elasticsearch.ssl.certificate_authority: "E:/elk/elasticsearch-8.3.2/config/certs/http_ca.crt"
-
#xpack.monitoring.elasticsearch.ssl.truststore.path: path/to/file
-
#xpack.monitoring.elasticsearch.ssl.truststore.password: password
-
#xpack.monitoring.elasticsearch.ssl.keystore.path: /path/to/file
-
#xpack.monitoring.elasticsearch.ssl.keystore.password: password
-
xpack.monitoring.elasticsearch.ssl.verification_mode: certificate
-
xpack.monitoring.elasticsearch.sniffing: false
在文件夹下E:\elk\logstash-8.3.2\config下新建配置文件logstash.conf
logstash.conf内容如下:(这里我们采用本地access.log文件作为数据源,第七步讲采用远程数据源)
-
# logstash.conf 日志捕获从指定路径的 access.log 文件中获得
-
# 输出到 es 的 "access-%{ YYYY.MM.dd}" 索引中,索引不存在则自动创建
-
# 同时考虑到是 https 访问,需要配置 ssl
-
-
-
input {
-
-
file {
-
-
type => "nginx_access"
-
-
path => "E:/elk/logstash-8.3.2/logs/access.log"
-
-
}
-
-
}
-
-
output {
-
-
elasticsearch {
-
-
hosts => ["https://127.0.0.1:9200"]
-
-
index => "access-%{ YYYY.MM.dd}"
-
-
user => "elastic"
-
-
password => "N0A xc1-vUvLf _3s25J"
-
-
ssl => true
-
-
ssl_certificate_verification => true
-
-
cacert => "E:/elk/elasticsearch-8.3.2/config/certs/http_ca.crt"
-
}
-
-
stdout {
-
-
codec => json_lines
-
-
}
-
-
}
启动logstash:打开cmd窗口cd到logstash的bin目录下执行命令:
logstash -f ./config/logstash.conf
4.安装和启动kibana
为kibana单独创建一个elasticsearch账户(不能用elastic初始账户)
在此处打开PowerShell窗口:执行
./elasticsearch-reset-password -u kibana_system
(记录下这个账号和密码,接下来的配置要用到)
修改kibana.yml文件
-
server.port: 5601
-
-
server.host: "localhost"
-
server.maxPayload: 1048576
-
-
-
server.name: "kibaba-host"
-
-
elasticsearch.hosts: ["https://127.0.0.1:9200"]
-
-
elasticsearch.username: "kibana_system"
-
elasticsearch.password: "N0A xc1-vUvLf _3s25J"
-
-
elasticsearch.pingTimeout: 1500
-
-
elasticsearch.requestTimeout: 30000
-
-
elasticsearch.ssl.certificateAuthorities: [ "E:/elk/elasticsearch-8.3.2/config/certs/http_ca.crt" ]
-
-
elasticsearch.ssl.verificationMode: certificate
启动:双击kibana.bat
5.SpringBoot推送日志
依赖
-
<dependency>
-
<groupId>net.logstash.logback</groupId>
-
<artifactId>logstash-logback-encoder</artifactId>
-
<version>7.2</version>
-
</dependency>
resources文件夹下新建配置文件logback-spring-dev.xml,内容如下
-
-
<configuration>
-
<include resource="org/springframework/boot/logging/logback/base.xml"/>
-
<appender name="LOGSTASH2FILE" class="ch.qos.logback.core.rolling.RollingFileAppender">
-
<append>true</append>
-
<file>E:\elk\logstash-8.3.2\logs\access.log</file>
-
<rollingPolicy class="ch.qos.logback.core.rolling.TimeBasedRollingPolicy">
-
<fileNamePattern>E:\elk\logstash-8.3.2\logs\access.%d{yyyyMMdd}.log</fileNamePattern>
-
</rollingPolicy>
-
<encoder charset="UTF-8" class="net.logstash.logback.encoder.LogstashEncoder"/>
-
</appender>
-
<root level="INFO">
-
<appender-ref ref="LOGSTASH2FILE"/>
-
</root>
-
</configuration>
在application-dev.xml中配置
-
logging:
-
config: classpath:logback-spring-dev.xml
使用application的dev环境
启动项目:
此时发现了access.log有数据了
6.操作kibana
7.远程数据源输入
修改logstash.conf文件,添加了tcp的输入方式,另外为了区分之前的access.log数据源,修改elasticsearch的索引名称为springboot
-
# logstash.conf 日志捕获从指定路径的 access.log 文件中获得
-
# 输出到 es 的 "access-%{ YYYY.MM.dd}" 索引中,索引不存在则自动创建
-
# 同时考虑到是 https 访问,需要配置 ssl
-
-
-
input {
-
# 输入方式一配置:暴露给远程TCP输入
-
tcp{
-
mode => "server"
-
host => "127.0.0.1"
-
port => 9061
-
codec => json_lines
-
}
-
# 输入方式二配置:读取本地文件输入
-
file {
-
type => "nginx_access"
-
path => "E:/elk/logstash-8.3.2/logs/access.log"
-
}
-
-
}
-
# 输出配置:Elasticsearch相关配置
-
output {
-
-
elasticsearch {
-
-
hosts => ["https://127.0.0.1:9200"]
-
-
index => "springboot-%{ YYYY.MM.dd}"
-
-
user => "elastic"
-
-
password => "N0A xc1-vUvLf _3s25J"
-
-
ssl => true
-
-
ssl_certificate_verification => true
-
-
cacert => "E:/elk/elasticsearch-8.3.2/config/certs/http_ca.crt"
-
}
-
-
stdout {
-
-
codec => json_lines
-
-
}
-
-
}
修改springboot项目的logback-spring-dev.xml文件
-
-
<configuration>
-
<include resource="org/springframework/boot/logging/logback/base.xml"/>
-
-
<appender name="LOGSTASH" class="net.logstash.logback.appender.LogstashTcpSocketAppender">
-
<!--//logstash ip和暴露的端口,logback就是通过这个地址把日志发送给logstash-->
-
<destination>127.0.0.1:9061</destination>
-
<encoder charset="UTF-8" class="net.logstash.logback.encoder.LogstashEncoder"/>
-
</appender>
-
<!--<appender name="LOGSTASH2FILE" class="ch.qos.logback.core.rolling.RollingFileAppender">-->
-
<!--<append>true</append>-->
-
<!--<file>E:\elk\logstash-8.3.2\logs\access.log</file>-->
-
<!--<rollingPolicy class="ch.qos.logback.core.rolling.TimeBasedRollingPolicy">-->
-
<!--<fileNamePattern>E:\elk\logstash-8.3.2\logs\access.%d{yyyyMMdd}.log</fileNamePattern>-->
-
<!--</rollingPolicy>-->
-
<!--<encoder charset="UTF-8" class="net.logstash.logback.encoder.LogstashEncoder"/>-->
-
<!--</appender>-->
-
<root level="INFO">
-
<appender-ref ref="LOGSTASH"/>
-
<appender-ref ref="CONSOLE"/>
-
<!--<appender-ref ref="LOGSTASH2FILE"/>-->
-
</root>
-
</configuration>
重启Elasticsearch 、 Logstash、Kibana、SpringBoot;注意启动顺序 。
这篇好文章是转载于:学新通技术网
- 版权申明: 本站部分内容来自互联网,仅供学习及演示用,请勿用于商业和其他非法用途。如果侵犯了您的权益请与我们联系,请提供相关证据及您的身份证明,我们将在收到邮件后48小时内删除。
- 本站站名: 学新通技术网
- 本文地址: /boutique/detail/tanhggcihc
系列文章
更多
同类精品
更多
-
photoshop保存的图片太大微信发不了怎么办
PHP中文网 06-15 -
《学习通》视频自动暂停处理方法
HelloWorld317 07-05 -
Android 11 保存文件到外部存储,并分享文件
Luke 10-12 -
word里面弄一个表格后上面的标题会跑到下面怎么办
PHP中文网 06-20 -
photoshop扩展功能面板显示灰色怎么办
PHP中文网 06-14 -
微信公众号没有声音提示怎么办
PHP中文网 03-31 -
excel下划线不显示怎么办
PHP中文网 06-23 -
excel打印预览压线压字怎么办
PHP中文网 06-22 -
TikTok加速器哪个好免费的TK加速器推荐
TK小达人 10-01 -
怎样阻止微信小程序自动打开
PHP中文网 06-13