1、部署Redis

1.1、下载redis

[root@linux-node2 ~]# wget http://download.redis.io/releases/redis-4.0.6.tar.gz

[root@linux-node2 ~]# tar -zxvf redis-4.0..tar.gz

[root@linux-node2 ~]# mv redis-4.0. /usr/loca/src

[root@linux-node2 ~]# cd /usr/local/src/redis-4.0.

[root@linux-node2 redis-4.0.]# make

[root@linux-node2 redis-4.0.]# ln -sv /usr/local/src/redis-4.0. /usr/local/redis

[root@linux-node2 redis-4.0.]# cd /usr/local/redis

1.2、配置redis

[root@linux-node2 redis]# vim redis.conf

bind 192.168.56.12

daemonize yes

save ""

requirepass     #开启认证

[root@linux-node2 redis]# cp /usr/local/src/redis-4.0./src/redis-server /usr/bin/

[root@linux-node2 redis]# cp /usr/local/src/redis-4.0./src/redis-cli /usr/bin/

[root@linux-node2 redis]# redis-server /usr/local/redis/redis.conf

:C  Jan ::26.801 # oO0OoO0OoO0Oo Redis is starting oO0OoO0OoO0Oo

:C  Jan ::26.801 # Redis version=4.0., bits=, commit=, modified=

:C  Jan ::26.801 # Configuration loaded

1.3、测试redis

[root@linux-node2 ~]# netstat -tulnp |grep

tcp               192.168.56.12:      0.0.0.0:*               LISTEN      /redis-server

[root@linux-node2 redis]# redis-cli -h 192.168.56.12

192.168.56.12:> KEYS *

(error) NOAUTH Authentication required.

192.168.56.12:> auth

OK

192.168.56.12:> KEYS *

(empty list or set)

192.168.56.12:> quit

2、配置logstash将日志写入redis

2.1、配置logstash的system.conf

[root@linux-node1 conf.d]# vim system.conf

input {

  file {

        path => "/var/log/messages"

        type => "systemlog"

        start_position => "beginning"

        stat_interval => ""

  }

}

output {

  if [type] == "systemlog" {

        redis {

                data_type => "list"

                host => "192.168.56.12"

                db => ""

                port => ""

                password => ""

                key => "systemlog"

        }

  }

}

2.2、检测配置语法

[root@linux-node1 conf.d]# /usr/share/logstash/bin/logstash -f /etc/logstash/conf.d/sy

OpenJDK -Bit Server VM warning: If the number of processors is expected to increase CThreads=N

WARNING: Could not find logstash.yml which is typically located in $LS_HOME/config or

Could not find log4j2 configuration at path /usr/share/logstash/config/log4j2.properti

Configuration OK

[root@linux-node1 conf.d]# systemctl restart logstash

2.3、写入messages日志测试

[root@linux-node1 conf.d]# cat /etc/hosts >> /var/log/messages

[root@linux-node1 conf.d]# echo "helloword" >> /var/log/messages

2.4、登陆redis中查看

[root@linux-node2 ~]# redis-cli -h 192.168.56.12

192.168.56.12:> KEYS *

(error) NOAUTH Authentication required.

192.168.56.12:> AUTH

OK

192.168.56.12:>

192.168.56.12:> select

OK

192.168.56.12:[]> KEYS *

) "systemlog"

192.168.56.12:[]> LLEN systemlog      #查看key的长度

(integer)

192.168.56.12:[]> LLEN systemlog

(integer)

192.168.56.12:[]> LPOP systemlog    #展示一条记录会减少一条

"{\"@version\":\"1\",\"host\":\"linux-node1\",\"path\":\"/var/log/messages\",\"@timestamp\":\"2018-01-02T03:04:40.424Z\",\"type\":\"systemlog\",\"tags\":[\"_geoip_lookup_failure\"]}"

192.168.56.12:[]> LLEN systemlog

(integer)

3、配置logstash从reids中取出数据到elasticsearch

3.1、使用linux-node2上的logstash从redis取数据

[root@linux-node2 conf.d]# vim redis-es.conf

input {

    redis {

        data_type => "list"

        host => "192.168.56.12"

        db => ""

        port => ""

        key => "systemlog"

        password => ""

    }

}

output {

    elasticsearch {

        hosts => ["192.168.56.11:9200"]

        index => "redis-systemlog-%{+YYYY.MM.dd}"

    }

}

[root@linux-node2 conf.d]# /usr/share/logstash/bin/logstash -f /etc/logstash/conf.d/redis-es.conf -t

OpenJDK -Bit Server VM warning: If the number of processors is expected to increase from one, then you should configure the number of parallel GC threads appropriately using -XX:ParallelGCThreads=N

WARNING: Could not find logstash.yml which is typically located in $LS_HOME/config or /etc/logstash. You can specify the path using --path.settings. Continuing using the defaults

Could not find log4j2 configuration at path /usr/share/logstash/config/log4j2.properties. Using default config which logs errors to the console

Configuration OK

[root@linux-node2 conf.d]# systemctl restart logstash

3.2、从linux-node1上写入数据查看

[root@linux-node1 conf.d]# cat /etc/passwd >> /var/log/messages

[root@linux-node2 ~]# redis-cli -h 192.168.56.12

192.168.56.12:> KEYS *

(error) NOAUTH Authentication required.

192.168.56.12:> AUTH

OK

192.168.56.12:> select

OK

192.168.56.12:[]> KEYS *

) "systemlog"

192.168.56.12:[]> LLEN systemlog      #查看数据长度为38

(integer)

192.168.56.12:[]> LLEN systemlog      #配置成功logstash从redis中取完数据,redis长度变成0

(integer)

3.3、head插件和Kibana添加索引查看

ELKStack入门篇(三)之logstash收集日志写入redis的更多相关文章

  1. ELK快速入门(三)logstash收集日志写入redis

    ELK快速入门三-logstash收集日志写入redis 用一台服务器部署redis服务,专门用于日志缓存使用,一般用于web服务器产生大量日志的场景. 这里是使用一台专门用于部署redis ,一台专 ...

  2. ELK之logstash收集日志写入redis及读取redis

    logstash->redis->logstash->elasticsearch 1.安装部署redis cd /usr/local/src wget http://download ...

  3. ELK快速入门(四)filebeat替代logstash收集日志

    ELK快速入门四-filebeat替代logstash收集日志 filebeat简介 Filebeat是轻量级单用途的日志收集工具,用于在没有安装java的服务器上专门收集日志,可以将日志转发到log ...

  4. ELK快速入门(二)通过logstash收集日志

    ELK快速入门二-通过logstash收集日志 说明 这里的环境接着上面的ELK快速入门-基本部署文章继续下面的操作. 收集多个日志文件 1)logstash配置文件编写 [root@linux-el ...

  5. ELKStack入门篇(一)之ELK部署和使用

    一.ELKStack简介 1.ELK介绍 中文指南:https://www.gitbook.com/book/chenryn/elk-stack-guide-cn/details ELK Stack包 ...

  6. 【SSRS】入门篇(三) -- 为报表定义数据集

    原文:[SSRS]入门篇(三) -- 为报表定义数据集 通过前两篇文件 [SSRS]入门篇(一) -- 创建SSRS项目 和 [SSRS]入门篇(二) -- 建立数据源 后, 我们建立了一个SSRS项 ...

  7. ELK之filebeat替代logstash收集日志

    filebeat->redis->logstash->elasticsearch 官网下载地址:https://www.elastic.co/downloads/beats/file ...

  8. ELKStack入门篇(二)之Nginx、Tomcat、Java日志收集以及TCP收集日志使用

    1.收集Nginx的json格式日志 1.1.Nginx安装 [root@linux-node1 ~]# yum install nginx -y [root@linux-node1 ~]# vim ...

  9. ELKStack入门篇(四)之Filebeat

    Filebeat是轻量级单用途的日志收集工具,用于在没有安装java的服务器上专门收集日志,可以将日志转发到logstash.elasticsearch或redis等场景中进行下一步处理. 官方文档: ...

随机推荐

  1. Guava包学习---I/O

    Guava的I/O平时使用不太多,目前项目原因导致基本上只有在自己写一些文本处理小工具才用得到.但是I/O始终是程序猿最常遇到的需求和面试必问的知识点之一.同时Guava的I/O主要面向是时JDK5和 ...

  2. Guava包学习---Maps

    Maps包方法列表: 还是泛型创建Map: public static <K, V> HashMap<K, V> newHashMap() { return new HashM ...

  3. 随手练——LintCode 433 - 小岛数量

    LintCode 433: https://www.lintcode.com/problem/number-of-islands/description LintCode 434: https://w ...

  4. 数据包式套接字:基于UDP协议的Socket网络编程

    步骤: 1.利用DatagramPacket封装数据包: 2.利用DatagramSocket发送数据包: 3.利用DatagramSocket接收数据包: 4.利用DatagramPacket处理数 ...

  5. Unity3D-飞机拖尾效果

    1.插件准备 unity3d官网,Assert Store搜索Cartoon_airplane 插件 2.拖尾效果实现 飞机显示 拖尾组件设计 在airplane_02下 右键 Effects-Tra ...

  6. springboot项目用maven打jar包

    clean package -Dmaven.test.skip=true idea eclipse STS

  7. python -- peewee处理数据库连接

    目前,实现了的Database子类有三个:SqliteDatabase.MySQLDatabase.PostgresqlDatabase class SqliteDatabase(Database) ...

  8. Mac下python3配置Sklearn

    服务器要有Python 环境 ,也要有Python运行的依赖包,Java与Python使用Process进程进行通讯. 安装homebrew /usr/bin/ruby -e "$(curl ...

  9. case when then else end 与 decode 的区别

    case when  then else end : 条件可以有 等于 ,大于 ,小于 与 decode : 条件只可以有等于的.

  10. VS2015调试,签名时出错: 未在路径 C:\Program Files (x86)\Microsoft SDKs\Windows\v7.0A\bin\signtool.exe 找到 SignTool.exe

    1.发布项目是出现这个错误网上找了有两种方式, 一种是重新安装VS2015的ClickOnce程序 第二种是修改项目文件的签名 右击项目文件的属性,选择签名,然后把红框内去掉,保存即可.