Skip to content

Instantly share code, notes, and snippets.

@ulexxander

ulexxander/docker-compose.yml

Created December 4, 2022 10:08
Show Gist options
  • Save ulexxander/8db468add2669d8b6c2e32cdb8523e2f to your computer and use it in GitHub Desktop.
Save ulexxander/8db468add2669d8b6c2e32cdb8523e2f to your computer and use it in GitHub Desktop.
Download ZIP
EFK log collection stack (Elasticsearch, Fluent Bit, Kibana) setup for development.
Raw
docker-compose.yml
version: "3.8"
services:
elasticsearch:
image: elasticsearch:8.5.2
volumes:
- elasticsearch-data:/usr/share/elasticsearch/data
environment:
- ES_JAVA_OPTS=-Xms512m -Xmx512m
- discovery.type=single-node
- xpack.security.enabled=false
restart: always
fluent-bit:
image: fluent/fluent-bit:1.9.10
ports:
- "24224:24224"
volumes:
- ./fluent-bit.conf:/fluent-bit/etc/fluent-bit.conf
- ./fluent-bit-parsers.conf:/fluent-bit/etc/parsers.conf
restart: always
kibana:
image: kibana:8.5.2
ports:
- "5601:5601"
restart: always
# Any application that outputs logs in JSON format.
# Each record must contain time in RFC3339 nano format inside "time" field.
dummylog:
image: dummylog
command: -format=json
logging:
driver: fluentd
options:
tag: docker.json_rfc3339_nano
volumes:
elasticsearch-data:
Raw
fluent-bit-parsers.conf
[PARSER]
Name json_rfc3339_nano
Format json
Time_Key time
# RFC3339 Nano (2006-01-02T15:04:05.999999999Z07:00)
Time_Format %Y-%m-%dT%H:%M:%S.%L%z
Raw
fluent-bit.conf
[SERVICE]
Flush 1
Parsers_File ./parsers.conf
[INPUT]
Name forward
[FILTER]
Name parser
Match docker.json_rfc3339_nano
Parser json_rfc3339_nano
Key_Name log
Reserve_Data On
[OUTPUT]
Name es
Match docker.*
Host elasticsearch
Logstash_Format On
Logstash_Prefix docker-logs
Suppress_Type_Name On
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment