Using Elastic to monitor anything - Speaker Deck

Tweet

Tweet

Slide 1

Slide 1 text

Using Elastic to monitor anything @ChristophWurm August 2016

Slide 2

Slide 2 text

Unstructured Data Structured Data Search Logging Security Metrics Analytics Social Sensor Logs Documents User Activity Location

Slide 3

Slide 3 text

Elastic Cloud Security X-Pack Kibana User Interface Elasticsearch Store, Index, & Analyze Ingest Logstash Beats + Elastic Stack Alerting Monitoring Reporting Graph

Slide 4

Slide 4 text

”Long” pipeline

Slide 5

Slide 5 text

Ingest node

Slide 6

Slide 6 text

Filebeat Tail files Packetbeat Capture network packets Metricbeat System (ex Topbeat) Apache MySQL Nginx PostgreSQL Redis Zookeeper Winlogbeat Windows event logs

Slide 7

Slide 7 text

apachebeat httpd server-status burrowbeat kafka consumer lag cassandrabeat nodetool cfstats cloudtrailbeat aws events dockerbeat container stats elasticbeat elasticsearch status execbeat shell cmd output flowbeat sflow factbeat puppet facter httpbeat poll http(s) endpoints jmxproxybeat tomcat jmx metrics lmsensorsbeat temp, voltage, fans mysqlbeat any query -> elasticsearch packagebeat dpkg, rpm pingbeat icmp ping w/ rtt redisbeat redis info twitterbeat tweets by screen name wmibeat windows monitoring https://www.elastic.co/guide/en/beats/libbeat/master/community-beats.html

Slide 8

Slide 8 text

Demo Beats & Kibana 5 Script at https://github.com/cwurm/elastic-monitoring-meetup

Slide 9

Slide 9 text

Q&A @ChristophWurm