This is the demo environment for https://www.meetup.com/Turkey-Elastic-Fantastics/events/244682578/ Elastic-Turkey meetup.
https://github.com/xeraa/vagrant-elastic-stack -- This is a mini version of a more complete vagrant-elastic-stack as outlined here.
https://github.com/splunk/eventgen/tree/develop/samples for samples in example data generation with some minor modifications to fit the code :)
- Filebeat modules for nginx and system (initally commented out)
- Sample nginx logs and a simple generator python file
Do a simple vagrant up by using Vagrant's Ansible provisioner. All you need is a working Vagrant installation (1.8.6+ but the latest version is always recommended), a provider (tested with the latest VirtualBox version), and 2.5GB of RAM.
With the Ansible playbooks in the /elastic-stack/ folder you can configure the whole system step by step. Just run them in the given order inside the Vagrant box:
NOTE: Initially you will not need logstash. It is there for further testing/improvement purposes.
> vagrant ssh
$ ansible-playbook /elastic-stack/1_configure-elasticsearch.yml
$ ansible-playbook /elastic-stack/2_configure-kibana.yml
$ ansible-playbook /elastic-stack/4_configure-filebeat.yml
$ ansible-playbook /elastic-stack/5_configure-dashboards.yml
Or if you are in a hurry, run all playbooks with $ /elastic-stack/all.sh at once.
Access Kibana at http://localhost:5601
You can run the given nginxevents.py code to generate events in logs/example_access.log. By default this is read by filebeat.
python3 nginxevents.py