基于Postgress的ELK

原创 于 2020-09-07 18:07:53 发布 · 203 阅读 · 0 ·
CC 4.0 BY-SA版权
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
文章标签:

#elasticsearch

本文详细介绍使用Docker Compose部署ELK Stack(包括Elasticsearch, Logstash, Kibana)的过程,涵盖配置文件详解及与PostgreSQL数据库的集成,适用于日志管理和数据分析。

摘要生成于 C知道 ,由 DeepSeek-R1 满血版支持, 前往体验 >

ELK的docker-compose

version: '3'
services:
  postgres:
    image: postgres:9.6
    container_name: postgres
    restart: always
    environment:
      - POSTGRES_PASSWORD=
      - TZ=Asia/Shanghai
    volumes:
      - "./config/postgres.init/:/docker-entrypoint-initdb.d:ro"
      - "./config/postgres.init/postgresql.conf:/etc/postgresql/postgresql.conf:ro"
      command: postgres -c config_file=/etc/postgresql/postgresql.conf
      ports:
        - "15432:5432"

  elasticsearch:
    image: elasticsearch:6.8.8
    container_name: elasticsearch
    restart: always
    environment:
      - cluster.name=elasticsearch
      - discovery.type=single-node
      - ES_JAVA_OPTS=-Xms512m -Xmx512m
      - TZ=Asia/Shanghai
    ports:
      - 9200:9200
      - 9300:9300

  logstash:
    image: logstash:6.8.8
    container_name: logstash
    restart: always
    environment:
      - TZ=Asia/Shanghai
    depends_on:
      - elasticsearch
    links:
      - elasticsearch:es
    volumes:
      - "./config/postgresql-42.2.5.jar:/usr/share/logstash/config/postgresql-42.2.5.jar"
      - "./config/postgresql.conf:/usr/share/logstash/config/postgresql.conf"
    command: -f /usr/share/logstash/config/postgresql.conf
    ports:
    ports:
      - 4560:4560

  kibana:
    image: kibana:6.8.8
    container_name: kibana
    restart: always
    environment:
      - elasticsearch.hosts=http://elasticsearch:9200
      - TZ=Asia/Shanghai
    links:
      - elasticsearch:es
    depends_on:
      - elasticsearch
    ports:
      - 5601:5601

Logstash的配置文件

input {
  jdbc {
    jdbc_driver_library => "/usr/share/logstash/config/postgresql-42.2.5.jar"
    jdbc_driver_class => "org.postgresql.Driver"
    jdbc_connection_string => "jdbc:postgresql://172.22.61.202:15432/dkam-taxon"
    jdbc_user => "postgres"
    jdbc_password => "postgres"
    clean_run => true

    schedule => "* * * * *"
    statement => "SELECT * from txn_tag where update_time > :sql_last_value"
    use_column_value => true
    tracking_column => "update_time"
    tracking_column_type => "timestamp"
  }
}

filter {
    json {
        source => "message"
        remove_field => ["message"]
    }

        mutate {
                remove_field =>
                ["@timestamp","@version"]
        }

}

output {
        elasticsearch {
        hosts => ["172.22.61.202:9200"]
                index => "txn_tag"
                document_id => "%{id}"
        }
}

 

评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值