一、下载地址

官网:https://www.elastic.co/cn/downloads/logstash

百度云盘:

二、安装

tar zxvf logstash-6.2..tar.gz

mv logstash-6.2. logstash

配置文件(配置文件放哪个目录都可以,在启动Logstash时可以指定配置文件位置)

vi k_es.conf
input{

    kafka {

        bootstrap_servers => "10.10.6.225:9092"    #kafka服务器地址,不是zookeeper

    client_id => "test"

        auto_offset_reset => "latest"

        consumer_threads =>

        decorate_events => true

        topics => ["test"]    #控制kafka哪个topic,可以多个用逗号分割

    codec => "json"

    }

}

filter{

    json {

            source => "message"

        remove_field=>["message","beat","@version"]    #删除没用的属性

        add_field =>["customize","自定义字段"]    #增加属性

    }

}

output {

  elasticsearch {

        hosts => "localhost:9200"

        index => "logstash-nginxacclog-%{+YYYY.MM.dd}"    #放到elasticsearch哪个index中

    }

}

启动(到bin目录下)

./logstash -f k_es.conf

后台运行

nohup /usr/local/logstash/bin/logstash -f /usr/local/logstash/bin/k_es.conf -w 8 -b 1000 > /dev/null 2>&1 &

配置文件备份

input{

    kafka {

        bootstrap_servers => "10.100.2.210:9092"

        client_id => "nginxaccesslog"

        auto_offset_reset => "latest"

        consumer_threads =>

        decorate_events => true

        topics => ["nginx_access_log"]

        codec => "json"

        type => "nginx_log"

    }

    kafka {

        bootstrap_servers => "10.100.2.210:9092"

        client_id => "database"

        auto_offset_reset => "latest"

        consumer_threads =>

        decorate_events => true

        topics => ["t_resource_info","t_base_person","t_base_organization","t_base_student","t_base_parent","t_base_class"]

        codec => "json"

        type => "dsideal_db"

    }

     kafka {

        bootstrap_servers => "10.100.2.210:9092"

        client_id => "devops_real"

        auto_offset_reset => "latest"

        consumer_threads =>

        decorate_events => true

        topics => ["devopsrealinfo"]

                codec => "json"

                type => "devopsrealinfo"

        }

    kafka {

        bootstrap_servers => "10.100.2.210:9092"

        client_id => "devops_base"

        auto_offset_reset => "latest"

        consumer_threads =>

        decorate_events => true

        topics => ["devopsbaseinfo"]

                codec => "json"

                type => "devopsbaseinfo"

        }

}

filter{

    mutate {

        gsub => ["message", "\\x22", '"']

    }

    json {

        source => "message"

        remove_field=>["message","beat","@version"]

    }

    if [type] == "nginx_log" {

        geoip {

                source => "ip"

                target => "geoip"

                database => "/usr/local/GeoLite2-City.mmdb"

        }

    }

}

output {

    if [type] == "nginx_log" {

        elasticsearch {

            hosts => "10.100.2.210:9200"

            index => "nginx-access-log"

        }

    }

    if [type] == "dsideal_db" {

        elasticsearch {

            hosts => "10.100.2.210:9200"

            index => "%{table_name}"

            document_id => "%{id}"

        }

    }

    if [type] == "devopsbaseinfo" {

        elasticsearch {

                hosts => "localhost:9200"

                index => "devopsbaseinfo"

                document_id => "%{id}"

        }

    }

    if [type] == "devopsrealinfo" {

        elasticsearch {

                hosts => "localhost:9200"

                index => "devopsrealinfo"

        }

    }

}

CentOS6.9安装Logstash的更多相关文章

  1. CentOS6.5安装elasticsearch+logstash+kibana

    首先卸载低版本的java环境,然后安装 java环境和Apache服务 yum install -y java--openjdk httpd 安装ES环境 elasticsearch wget htt ...

  2. 安装logstash及logstash的初步使用-处理DNS日志

    安装logstash 需要高版本的java 使用1.4版本的java会有报错 # Can't start up: not enough memory 查询java信息 rpm -qa | grep j ...

  3. vmware Centos6.6安装64位

    Centos6.6安装64位 必须开启BIOS中的虚拟化技术 首先开机进入BIOS,一般机器是按F2,我的T420是按F1,然后进入Security,Virtualization,选择Enable即可 ...

  4. Gitlab完美安装【CentOS6.5安装gitlab-6.9.2】

    摘要: 拆腾了几天,终于在今天找到了快速安装Gitlab的方法.CentOS6.5安装gitlab-6.9.2 参考网址:https://gitlab.com/gitlab-org/omnibus-g ...

  5. CentOS6.5安装Tomcat

    安装说明 安装环境:CentOS-6.4 安装方式:源码安装 软件:apache-tomcat-7.0.56.tar.gz 下载地址:http://tomcat.apache.org/download ...

  6. Centos6 yum安装openldap+phpldapadmin+TLS+双主配置

    原文地址:http://54im.com/openldap/centos-6-yum-install-openldap-phpldapadmin-tls-%E5%8F%8C%E4%B8%BB%E9%8 ...

  7. centos6.5安装oracle11g_2

    centos7安装oracle数据库不成功,换成centos6.5安装,可以安装成功,记录一下 安装系统时,主机名如果不是用localhost,安装成功后,要用主机名和ip做映射,修改/etc/hos ...

  8. CentOS6.6安装vmware workstation报错

    本人系统用的是centos6.6,安装了vmware workstation,启动后一直如下图报错,相关内核已经安装了的,哪位前辈如果解决过这样的问题,麻烦指点指点,小弟在此先谢过了.

  9. CentOS6.6安装virtualbox4.1.44

    本人用的是centos6.6,安装了virtualbox 4.1.44,启动后一直如上图报错,哪位前辈如果解决过这样的问题,麻烦指点指点,小弟在此先谢过了.

随机推荐

  1. FAT文件系统规范v1.03学习笔记---1.保留区之启动扇区与BPB

    1.前言 本文主要是对Microsoft Extensible Firmware Initiative FAT32 File System Specification中文翻译版的学习笔记. 每个FAT ...

  2. k64 datasheet学习笔记50---GPIO

    1.前言 GPIO模块支持8bit 16bit 32bit访问,当被配置为GPIO功能时,GPIO数据方向和数据寄存器控制了每个引脚的输出方向和输出数据 不管GPIO配置为何种功能,GPIO输入寄存器 ...

  3. Linux中Grep常用的15个例子【转】

    转自:https://www.aliyun.com/jiaocheng/1390860.html?spm=5176.100033.1.9.6a1e41e8Pdjynm 摘要:Grep命令主要用于从文件 ...

  4. Linux 指定运行时动态库路径【转】

    转自:http://www.cnblogs.com/cute/archive/2011/02/24/1963957.html 众所周知, Linux 动态库的默认搜索路径是 /lib 和 /usr/l ...

  5. 记录一下putty的pscp的用法【转】

     转自 记录一下putty的pscp的用法 - 刘荣星的博客 https://www.liurongxing.com/how-use-the-putty-and-pscp.html 以前一直用Secu ...

  6. Tomcat 打开jmx

    jmx 配置后可以通过windows java客户端自带的jconsole.exe配置登陆,直观的查看jvm的情况及系统的各项指标: 一.配置linux下tomcat的jmx 具体配置如下,如果生产环 ...

  7. liunx之Centos6.8杀毒软件的安装

    作者:邓聪聪 为了防止服务器中病毒,安装了类似与Windowns的杀毒软件Clanav,过程如下 首先下载clamav的软件包,官方下载地址为http://www.clamav.net/downloa ...

  8. 使用Let's Encrypt为网站加入SSL证书

    一直没有为网站配置过HTTPS,因为怕麻烦.不过这次工作要求,没有办法,只能硬着头皮上了. 老板提供了一个关键字,Let's Encrypt.其实最早看到这句话,我以为是一个动词,让我行动的意思.但是 ...

  9. 专题2:最长上升子序列LIS

        A HDU 1025 Constructing Roads In JGShining's Kingdom     B POJ 3903 Stock Exchange     C OpenJ_B ...

  10. 解决genymotion-arm-translation.zip无法拖拽安装的问题

    1.问题由来 适用情况一:当我们启动了Genymotion模拟器后,在AndroidStudio运行app时,弹出如下错误: INSTALL_FAILED_CPU_ABI_INCOMPATIABLE ...