Created
November 22, 2019 20:36
-
-
Save krainboltgreene/2d2894753edf270ad581877de987106d to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "name": "kibana.mops.example.com", | |
| "uuid": "0cf8c51c-2fd7-4090-ac1b-eb032a19041e", | |
| "version": { | |
| "number": "7.4.2", | |
| "build_hash": "d7f39418dcaf7a243158b89f84bb82f39b04e5e5", | |
| "build_number": 26506, | |
| "build_snapshot": false | |
| }, | |
| "status": { | |
| "overall": { | |
| "state": "green", | |
| "title": "Green", | |
| "nickname": "Looking good", | |
| "icon": "success", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:58.579Z" | |
| }, | |
| "statuses": [{ | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:58.579Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.510Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.602Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:58.624Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.603Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:58.651Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:08.910Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:58.723Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.604Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.605Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.605Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.606Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.607Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:58.963Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.607Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.608Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.027Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.091Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.095Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.098Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.101Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.108Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.111Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.117Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.671Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.169Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.186Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.189Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.608Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.232Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.236Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.609Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.273Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.370Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.609Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.459Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.609Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.609Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.521Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.565Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.569Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.609Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.583Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:02.610Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.637Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.641Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.925Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.929Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.931Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.934Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.936Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.938Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:38:59.940Z" | |
| }, { | |
| "id": "plugin:[email protected]", | |
| "state": "green", | |
| "icon": "success", | |
| "message": "Ready", | |
| "uiColor": "secondary", | |
| "since": "2019-11-21T23:39:08.653Z" | |
| }] | |
| }, | |
| "metrics": { | |
| "last_updated": "2019-11-22T20:35:33.925Z", | |
| "collection_interval_in_millis": 5000, | |
| "process": { | |
| "memory": { | |
| "heap": { | |
| "total_in_bytes": 245989376, | |
| "used_in_bytes": 215001552, | |
| "size_limit": 1526909922 | |
| }, | |
| "resident_set_size_in_bytes": 332808192 | |
| }, | |
| "event_loop_delay": 0.2527618408203125, | |
| "pid": 6, | |
| "uptime_in_millis": 75465605 | |
| }, | |
| "os": { | |
| "load": { | |
| "1m": 0.611328125, | |
| "5m": 0.552734375, | |
| "15m": 0.4599609375 | |
| }, | |
| "memory": { | |
| "total_in_bytes": 6247575552, | |
| "free_in_bytes": 1545175040, | |
| "used_in_bytes": 4702400512 | |
| }, | |
| "uptime_in_millis": 6307101000, | |
| "platform": "linux", | |
| "platformRelease": "linux-5.0.0-27-generic", | |
| "distro": "Centos", | |
| "distroRelease": "Centos-7.7.1908", | |
| "cgroup": { | |
| "cpuacct": { | |
| "control_group": "/", | |
| "usage_nanos": 1952112706088 | |
| }, | |
| "cpu": { | |
| "control_group": "/", | |
| "cfs_period_micros": 100000, | |
| "cfs_quota_micros": -1, | |
| "stat": { | |
| "number_of_elapsed_periods": 0, | |
| "number_of_times_throttled": 0, | |
| "time_throttled_nanos": 0 | |
| } | |
| } | |
| } | |
| }, | |
| "response_times": { | |
| "avg_in_millis": 43, | |
| "max_in_millis": 43 | |
| }, | |
| "requests": { | |
| "disconnects": 0, | |
| "statusCodes": {}, | |
| "total": 1, | |
| "status_codes": { | |
| "200": 1 | |
| } | |
| }, | |
| "concurrent_connections": 2 | |
| } | |
| } |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| $ sudo filebeat setup -e | |
| 2019-11-22T20:33:46.860Z INFO instance/beat.go:607 Home path: [/usr/share/filebeat] Config path: [/etc/filebeat] Data path: [/var/lib/filebeat] Logs path: [/var/log/filebeat] | |
| 2019-11-22T20:33:46.861Z INFO instance/beat.go:615 Beat ID: b3f1efc7-a6b2-441e-9ad0-c32c7fc354ac | |
| 2019-11-22T20:33:46.861Z INFO [beat] instance/beat.go:903 Beat info {"system_info": {"beat": {"path": {"config": "/etc/filebeat", "data": "/var/lib/filebeat", "home": "/usr/share/filebeat", "logs": "/var/log/filebeat"}, "type": "filebeat", "uuid": "b3f1efc7-a6b2-441e-9ad0-c32c7fc354ac"}}} | |
| 2019-11-22T20:33:46.861Z INFO [beat] instance/beat.go:912 Build info {"system_info": {"build": {"commit": "15075156388b44390301f070960fd8aeac1c9712", "libbeat": "7.4.2", "time": "2019-10-28T19:46:13.000Z", "version": "7.4.2"}}} | |
| 2019-11-22T20:33:46.861Z INFO [beat] instance/beat.go:915 Go runtime info {"system_info": {"go": {"os":"linux","arch":"amd64","max_procs":2,"version":"go1.12.9"}}} | |
| 2019-11-22T20:33:46.862Z INFO [beat] instance/beat.go:919 Host info {"system_info": {"host": {"architecture":"x86_64","boot_time":"2019-10-29T22:27:47Z","containerized":false,"name":"la-eq-mops-docker-registry-node-0","ip":["127.0.0.1/8","::1/128","10.16.241.82/22","fe80::250:56ff:fea5:b087/64"],"kernel_version":"4.18.0-22-generic","mac":["00:50:56:a5:b0:87"],"os":{"family":"debian","platform":"ubuntu","name":"Ubuntu","version":"18.04.2 LTS (Bionic Beaver)","major":18,"minor":4,"patch":2,"codename":"bionic"},"timezone":"UTC","timezone_offset_sec":0,"id":"62f09d80ff744e89b630873d35522246"}}} | |
| 2019-11-22T20:33:46.863Z INFO [beat] instance/beat.go:948 Process info {"system_info": {"process": {"capabilities": {"inheritable":null,"permitted":["chown","dac_override","dac_read_search","fowner","fsetid","kill","setgid","setuid","setpcap","linux_immutable","net_bind_service","net_broadcast","net_admin","net_raw","ipc_lock","ipc_owner","sys_module","sys_rawio","sys_chroot","sys_ptrace","sys_pacct","sys_admin","sys_boot","sys_nice","sys_resource","sys_time","sys_tty_config","mknod","lease","audit_write","audit_control","setfcap","mac_override","mac_admin","syslog","wake_alarm","block_suspend","audit_read"],"effective":["chown","dac_override","dac_read_search","fowner","fsetid","kill","setgid","setuid","setpcap","linux_immutable","net_bind_service","net_broadcast","net_admin","net_raw","ipc_lock","ipc_owner","sys_module","sys_rawio","sys_chroot","sys_ptrace","sys_pacct","sys_admin","sys_boot","sys_nice","sys_resource","sys_time","sys_tty_config","mknod","lease","audit_write","audit_control","setfcap","mac_override","mac_admin","syslog","wake_alarm","block_suspend","audit_read"],"bounding":["chown","dac_override","dac_read_search","fowner","fsetid","kill","setgid","setuid","setpcap","linux_immutable","net_bind_service","net_broadcast","net_admin","net_raw","ipc_lock","ipc_owner","sys_module","sys_rawio","sys_chroot","sys_ptrace","sys_pacct","sys_admin","sys_boot","sys_nice","sys_resource","sys_time","sys_tty_config","mknod","lease","audit_write","audit_control","setfcap","mac_override","mac_admin","syslog","wake_alarm","block_suspend","audit_read"],"ambient":null}, "cwd": "/home/localadmin", "exe": "/usr/share/filebeat/bin/filebeat", "name": "filebeat", "pid": 9255, "ppid": 9254, "seccomp": {"mode":"disabled","no_new_privs":false}, "start_time": "2019-11-22T20:33:46.640Z"}}} | |
| 2019-11-22T20:33:46.863Z INFO instance/beat.go:292 Setup Beat: filebeat; Version: 7.4.2 | |
| 2019-11-22T20:33:46.864Z INFO [index-management] idxmgmt/std.go:178 Set output.elasticsearch.index to 'filebeat-7.4.2' as ILM is enabled. | |
| 2019-11-22T20:33:46.864Z INFO elasticsearch/client.go:170 Elasticsearch url: http://10.16.241.84:9200 | |
| 2019-11-22T20:33:46.864Z INFO elasticsearch/client.go:170 Elasticsearch url: http://10.16.241.83:9200 | |
| 2019-11-22T20:33:46.864Z INFO elasticsearch/client.go:170 Elasticsearch url: http://10.16.241.88:9200 | |
| 2019-11-22T20:33:46.865Z INFO [publisher] pipeline/module.go:97 Beat name: la-eq-mops-docker-registry-node-0 | |
| 2019-11-22T20:33:46.869Z INFO beater/filebeat.go:92 Enabled modules/filesets: osquery (result), (), system (auth, syslog), auditd (log), nats (log) | |
| 2019-11-22T20:33:46.872Z INFO elasticsearch/client.go:170 Elasticsearch url: http://10.16.241.84:9200 | |
| 2019-11-22T20:33:46.872Z INFO elasticsearch/client.go:170 Elasticsearch url: http://10.16.241.83:9200 | |
| 2019-11-22T20:33:46.872Z INFO elasticsearch/client.go:170 Elasticsearch url: http://10.16.241.88:9200 | |
| 2019-11-22T20:33:46.875Z INFO elasticsearch/client.go:743 Attempting to connect to Elasticsearch version 7.4.2 | |
| 2019-11-22T20:33:46.987Z INFO [index-management] idxmgmt/std.go:252 Auto ILM enable success. | |
| 2019-11-22T20:33:47.055Z INFO [index-management] idxmgmt/std.go:265 ILM policy successfully loaded. | |
| 2019-11-22T20:33:47.055Z INFO [index-management] idxmgmt/std.go:394 Set setup.template.name to '{filebeat-7.4.2 {now/d}-000001}' as ILM is enabled. | |
| 2019-11-22T20:33:47.055Z INFO [index-management] idxmgmt/std.go:399 Set setup.template.pattern to 'filebeat-7.4.2-*' as ILM is enabled. | |
| 2019-11-22T20:33:47.055Z INFO [index-management] idxmgmt/std.go:433 Set settings.index.lifecycle.rollover_alias in template to {filebeat-7.4.2 {now/d}-000001} as ILM is enabled. | |
| 2019-11-22T20:33:47.056Z INFO [index-management] idxmgmt/std.go:437 Set settings.index.lifecycle.name in template to {filebeat-7.4.2 {"policy":{"phases":{"hot":{"actions":{"rollover":{"max_age":"30d","max_size":"50gb"}}}}}}} as ILM is enabled. | |
| 2019-11-22T20:33:47.069Z INFO template/load.go:169 Existing template will be overwritten, as overwrite is enabled. | |
| 2019-11-22T20:33:47.344Z INFO template/load.go:108 Try loading template filebeat-7.4.2 to Elasticsearch | |
| 2019-11-22T20:33:47.502Z INFO template/load.go:100 template with name 'filebeat-7.4.2' loaded. | |
| 2019-11-22T20:33:47.503Z INFO [index-management] idxmgmt/std.go:289 Loaded index template. | |
| 2019-11-22T20:33:47.510Z INFO [index-management] idxmgmt/std.go:300 Write alias successfully generated. | |
| Index setup finished. | |
| Loading dashboards (Kibana must be running and reachable) | |
| 2019-11-22T20:33:47.512Z INFO kibana/client.go:117 Kibana url: https://kibana.mops.example.com:443 | |
| 2019-11-22T20:33:47.627Z ERROR instance/beat.go:878 Exiting: error connecting to Kibana: fail to get the Kibana version: HTTP GET request to https://kibana.mops.example.com:443/api/status fails: parsing kibana response: unexpected end of JSON input. Response: . | |
| Exiting: error connecting to Kibana: fail to get the Kibana version: HTTP GET request to https://kibana.mops.example.com:443/api/status fails: parsing kibana response: unexpected end of JSON input. Response: . |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment