Kibana入門

80046ac4618076c5369398b92db8f313?s=47 Yusuke Mito
November 12, 2013
Technology
63
48k

 Kibana入門

第2回elasticsearch勉強会の発表資料です。
Kibanaの基本的な使い方について網羅的にまとめました。

80046ac4618076c5369398b92db8f313?s=128

Yusuke Mito

November 12, 2013
Tweet

Want more?

80046ac4618076c5369398b92db8f313?s=48 y310
7
2.6k
80046ac4618076c5369398b92db8f313?s=48 y310
0
130
80046ac4618076c5369398b92db8f313?s=48 y310
11
5k
3ab1249be442027903e1180025340b3f?s=48 reverentgeek
7
400
A9a491b0fcbe0fbce3d64063a37add99?s=48 rmw
1
220
766b9746b59e6f09e280cd33cf4ed419?s=48 skipperchong
0
140
61857dafbd287b3027c4dcea9008ad3c?s=48 carmenhchung
6
270
06f8b41980eb4c577fa40c41d5030c19?s=48 keathley
5
200
C0390e8b11079f8761c0cd3274ed61cb?s=48 productmarketing
3
290
C35e01544a0dd94a2cf1619ee8a42ebb?s=48 clairelew
3
520
6bb82b13cda86d3b821fa44100335ddf?s=48 thoeni
1
150
B3ace07412a5178ea778e7eec161fc0a?s=48 jcasabona
4
240

Transcript

  1. 1.

    ,JCBOBೖ໳ ਫށ༞հ!Z@

  2. 2.

    ୭ʁ

  3. 3.

    ! ਫށ༞հ.JUP:VTVLF $00,1"%גࣜձٕࣾज़෦ ΞϓϦέʔγϣϯΤϯδχΞ Ҏલ͸αʔϏε։ൃɺ࠷ۙ͸3&45"1*ͷ։ൃͳͲ Z !Z@

  4. 4.

    ,JCBOB

  5. 5.

    ࠓ೔ͷ͓࿩ wͳͥ,JCBOBʁ w,JCBOBͷ࢖͍ํ w,JCBOB5JQT

  6. 6.

    ࠓ೔ͷ͓࿩ wͳͥ,JCBOBʁ w,JCBOBͷ࢖͍ํ w,JCBOB5JQT

  7. 7.

    ·ͣ͸جຊ৘ใ͔Β

  8. 8.

    ,JCBOBͱ͸ʁ w ϩάղੳՄࢹԽπʔϧ w MPHTUBTIͰूΊͨϩάΛՄࢹԽ͢ΔͨΊʹ࡞ΒΕͨ w ೥ʹ&MBTUJDTFBSDIͷެࣜπʔϧԽ w IUUQTHJUIVCDPNFMBTUJDTFBSDILJCBOB w

    MPHTUBTI΁ͷґଘ͸ͳ͘ɺqVFOUEͳͲ΋؆୯ʹ࿈ܞՄೳ
  9. 9.

    ߏ੒ &MBTUJDTFBSDI ,JCBOB MPHTUBTI qVFOUE

  10. 10.

    ಛ௃ w,JCBOBࣗମ͸)5.-$44+4ͷΈ wͭ·Γ8FCαʔό͚ͩͰ഑৴Մೳ XHFUIUUQEPXOMPBEFMBTUJDTFBSDIPSHLJCBOBLJCBOBLJCBOBMBUFTU[JQ VO[JQLJCBOBMBUFTU[JQ SVCZSTJOBUSBFTFUQVCMJD@EJS lLJCBOBMBUFTU

  11. 11.

    ಛ௃ ύωϧΛ௥Ճͯ͠ ޷ΈͷμογϡϘʔυΛ࡞ΕΔ

  12. 12.

    ಛ௃ w࡞ͬͨμογϡϘʔυ͸ FMBTUJDTFBSDIʹอଘ wετϨʔδෆཁ

  13. 13.

    ,JCBOBΛ࢖͏ཧ༝

  14. 14.

    ϩάΛݟΔͱ͖ʹ Α͋͘Δ͜ͱ

  15. 15.

    ຖճݟ͍ͨ৚͕݅มΘΔ ͋ΔϢʔβͷΞΫηεΛ௥੻͍ͨ͠ ͜ͷϖʔδʹΞΫηε͞Εͨճ਺ J04ͱ"OESPJEͷΞΫηεൺ཰ ฏۉϨεϙϯελΠϜ FUDʜ

  16. 16.

    ૉૣ͘܏޲Λݟ͍ͨ ϐʔΫλΠϜ͸Կ࣌ࠒʁ ٳ೔ͷτϥϑΟοΫ͸ฏ೔ʹൺ΂ͯͲ͏ʁ Τϥʔ͸ى͖͍ͯͳ͍ʁ FUDʜ

  17. 17.

    Ͱ΋ɺৄࡉ΋ݟ͍ͨ ͜ͷ࣌ͷΫΤϦύϥϝʔλ͸Կʁ ͜ͷάϥϑͷεύΠΫ͸Կʁ Ͳ͔͜Β͜ͷϖʔδʹདྷͨͷʁ FUDʜ

  18. 18.

    ݟ͍ͨ࣌ʹ ݟ͍ͨ৘ใΛ ૉૣ͘

  19. 19.

    ,JCBOBͳΒશ෦Ͱ͖Δ

  20. 20.

    ࠓ೔ͷ͓࿩ wͳͥ,JCBOBʁ w,JCBOBͷ࢖͍ํ w,JCBOB5JQT

  21. 21.

    αϯϓϧσʔλ χίχίσʔληοτಈըϝλσʔλ IUUQXXXOJJBDKQDTDFOUFSJESOJDPOJDPIUNM

  22. 22.

    ఏڙ ג υϫϯΰ ࠃཱ৘ใֶݚڀॴ

  23. 23.

    /BWJHBUJPO 3PX 3PX 1BOFM 1BOFM 1BOFM

  24. 24.

    2VFSZ ݕࡧΫΤϦΛೖྗ͢ΔҰ൪جຊͱͳΔύωϧ MVDFOFΫΤϦ͕ॻ͚Δ NPWJF@UZQFNQ NPWJF@UZQFqW

  25. 25.

    'JMUFSJOH ݱࡏͷΫΤϦʹର͔͔͍ͯͬͯ͠ΔߜΓࠐΈ৚݅Λදࣔ ظؒͷߜΓࠐΈ NPWJF@UZQFͷߜΓࠐΈ

  26. 26.

    4BWF-PBE FMBTUJDTFBSDIͷLJCBOBJOUΠϯσοΫε͔ΒอଘͱಡΈࠐΈ μογϡϘʔυΛ࡞ͬͨΒϦϩʔυલʹඞͣอଘʂ

  27. 27.

    )JTUPHSBN ࣌ܥྻσʔλΛදࣔ͢Δ Ұ൪࢖͏͜ͱʹͳΔύωϧ -JOFT #BST 1PJOUT

  28. 28.

    )JUT ΫΤϦ͝ͱͷ૯ώοτ݅਺ΛάϥϑԽ

  29. 29.

    4QBSLMJOFT ΫΤϦ͝ͱͷ܏޲͚ͩΛՄࢹԽ IUUQTUXJUUFSDPNSBTIJELQDTUBUVT

  30. 30.

    5FSNT GBDFUTͷ݁ՌΛ#BS 1JF 5BCMFͰάϥϑԽ ίϝϯτ਺ͷGBDFU

  31. 31.

    5SFOET ࢦఆͨ࣌͠఺͔Βͷ஋ͷมԽΛදࣔ ʮલ೔ൺ/૿Ճʯ ʮલ೥ൺ.ݮগʯͳͲ

  32. 32.

    .BQ GBDFUͷ݁ՌΛ஍ਤ্ͰՄࢹԽ ೔ຊ஍ਤ͸1VMMSFRVFTUΛग़ͨ͠΋ͷͷٞ࿦தʜ IUUQTHJUIVCDPNFMBTUJDTFBSDILJCBOBQVMM

  33. 33.

    #FUUFS.BQ Ң౓ɾܦ౓ΛݩʹϚοϐϯά

  34. 34.

    5BCMF ΫΤϦʹϚονͨ͠υΩϡϝϯτͷ಺༰Λදࣔ

  35. 35.

    $PMVNO ύωϧΛॎʹฒ΂ΒΕΔύωϧ

  36. 36.

    5FYU )5.- NBSLEPXO QMBJOUFYUͰςΩετΛදࣔ

  37. 37.

    DEMO

  38. 38.

    ΫΤϦͷॻ͖ํ

  39. 39.

    λΠτϧʹʮՎͬͯΈͨʯΛؚΉಈը UJUMFlՎͬͯΈͨz ಈըܗࣜNQҎ֎ͷಈը NPWJF@UZQFNQ ࠶ੜ࣌ؒ෼ະຬͷಈը MFOHUI< 50> λΠτϧʹʮՎͬͯΈͨʯΛؚΉNQಈը UJUMFlՎͬͯΈͨz"/%NPWJF@UZQFNQ /05

    NPWJF@UZQFNQ ·ͨ͸ ࠶ੜ࣌ؒ෼ະຬͷಈը MFOHUI< 50>
  40. 40.

    ෳ਺ͷΫΤϦͷ݁ՌΛൺֱ

  41. 41.

    ಈըܗࣜͷൺֱ GBDFUͰऔಘͨ͠Ωʔϫʔυ͔Βࣗಈతʹݕࡧ

  42. 42.

    ಈըϑΝΠϧαΠζͷฏۉ஋ ਺஋ϑΟʔϧυͷฏۉ஋ΛάϥϑԽ ଞʹɺ࠷େ஋ɺ࠷খ஋ɺ߹ܭ΋ܭࢉՄೳ

  43. 43.

    ࠓ೔ͷ͓࿩ wͳͥ,JCBOBʁ w,JCBOBͷ࢖͍ํ w,JCBOB5JQT

  44. 44.

    JOEFYͱUZQF MPHTUBTI BDDFTT@MPH JOEFY UZQF FWFOU@MPH UZQF MPHTUBTI BDDFTT@MPH JOEFY

    UZQF FWFOU@MPH UZQF MPHTUBTI BDDFTT@MPH JOEFY UZQF FWFOU@MPH UZQF ͭͷJOEFYʹҟͳΔεΩʔϚΛ࣋ͭσʔλΛೖΕΒΕΔ ͭͷJOEFYʹೖΕΔ͜ͱͰάϥϑΛॏͶͯൺֱͳͲ͕Ͱ͖Δ
  45. 45.

    NBQQJOH w NBQQJOH͸ࣗಈతʹఆٛ͞ΕΔ w େ֓ɺͪΐͬͱ͏·͍͔͘ͳ͍ w ਺஋ܕ͕JOUFHFSͰ͸ͳ͘MPOHʹͳΔ w ύεจࣈྻ͕෼͔ͪॻ͖͞Εͯ͠·͏ w

    ͳͲ
  46. 46.

    {! "template": "logstash-*",! "settings" : {! "number_of_shards" : 1,! "number_of_replicas"

    : 0! },! "mappings": {! “access_log": { ! "_source": { "compress": true },! "dynamic_templates": [! {! "string_template" : { ! "match" : "*",! "mapping": { "type": "string", "index": "not_analyzed" },! "match_mapping_type" : "string"! } ! }! ],! "properties" : {! "path" : {! "type": "multi_field",! "fields" : {! "analyzed" : {"type":"string", "index" : "analyzed"},! "no_analyzed": {"type":"string", "index" : "not_analyzed"}! }! },! "agent" : {! "type": "multi_field",! "fields" : {! "analyzed" : {"type":"string", "index" : "analyzed"},! "no_analyzed": {"type":"string", "index" : "not_analyzed"}! }! },! "referer" : {! "type": "multi_field",! "fields" : {! "analyzed" : {"type":"string", "index" : "analyzed"},! "no_analyzed": {"type":"string", "index" : "not_analyzed"}! }! },! "@timestamp" : { "type" : "date", "index" : "not_analyzed" }! }! }! }! } curl -XPUT localhost:9200/_template/logstash_template JOEFYUFNQMBUF MPHTUBTIͰ࢝·ΔJOEFYʹࣗಈతʹద༻ UZQF͕BDDFTT@MPHͷυΩϡϝϯτʹద༻ ͭͷϓϩύςΟΛෳ਺ͷpFMEʹల։ ෼͔ͪॻ͖Λ͠ͳ͍
  47. 47.

    ੑೳ w &$NMBSHFʷ୆ w ೔ͷΠϯσοΫεαΠζ͕(#Λ௒͑Δ͋ͨΓͰ FMBTUJDTFBSDI͕٧·Γ࢝ΊΔ w 0VU0G.FNPSZ&SSPSͳͲΛు͍ͯ΄ͱΜͲJNQPSUΛड͚෇͚ ͳ͘ͳΔ w

    qVFOUEʹσʔλ͕ͨ·ΓόοϑΝΦʔόʔͰσʔλΛࣦ͏ʜ
  48. 48.

    ੑೳ w ͦͷޙɺ+7.ͷ($ύϥϝʔλνϡʔχϯάʹΑΓͳΜͱ͔҆ఆ w ϐʔΫ࣌Ͱ.CQTఔ౓ͷτϥϑΟοΫʹ଱͑ΒΕΔ͜ͱΛ֬ೝ νϡʔχϯάͷৄࡉʹ͍ͭͯ͸ !DPO@NBNFʹฉ͍͍ͯͩ͘͞ ΦϒδΣΫτ͕େྔʹੜ੒ɺ࡟আ͞ΕΔ͜ͱͰසൟʹ'VMM($͕૸͍ͬͯͨͷ͕ݪҼ /FXྖҬͷαΠζΛ޿͛ͯ4DBWFOHF($Ͱճऩ͞ΕΔΑ͏ʹ͢Δ͜ͱͰ'VMM($ͷൃੜ ස౓ΛͰ͖Δ͚ͩԼ͛ΔΑ͏ʹͨ͠

  49. 49.

    ࠷৽৘ใΛ௥͏ w HJUIVCͷNBTUFShttps://github.com/elasticsearch/kibana w ຖ೔ͷΑ͏ʹػೳ௥Ճ΍σβΠϯมߋ͕ى͖͍ͯ·͢ w ͨ·ʹͪΐͬͱյΕͯ·͢ w ެࣜCMPHhttp://www.elasticsearch.org/blog/ w

    ,JCBOBͷهࣄ͸ ϲ݄ʹຊͰ͕͢།Ұͷ৽ػೳ঺հ৘ใͰ͢ w EFNPLJCBOBPSHhttp://demo.kibana.org/ w खͬऔΓૣ͘࠷৽൛ΛࢼͤΔ