- ElasticSearch【存储】
- Logtash【日志聚合器】
- Kibana【界面】
答案:
version: '2'services:elasticsearch:image: elasticsearch# command: elasticsearchports:- "9200:9200" # REST API端口- "9300:9300" # RPC端口logstash:image: logstashcommand: logstash -f /etc/logstash/conf.d/logstash.confvolumes:- ./config:/etc/logstash/conf.d- /opt/build:/opt/buildports:- "5000:5000"kibana:image: kibanaenvironment:- ELASTICSEARCH_URL=http://elasticsearch:9200ports:- "5601:5601"
logstash.conf 参考示例:
input {file {codec => jsonpath => "/opt/build/*.json"}}filter {grok {match => { "message" => "%{TIMESTAMP_ISO8601:timestamp}\s+%{LOGLEVEL:severity}\s+\[%{DATA:service},%{DATA:trace},%{DATA:span},%{DATA:exportable}\]\s+%{DATA:pid}---\s+\[%{DATA:thread}\]\s+%{DATA:class}\s+:\s+%{GREEDYDATA:rest}" }}}output {elasticsearch {hosts => "elasticsearch:9200"}}
参考文档
https://docs.docker.com/compose/samples-for-compose/#samples-tailored-to-demo-compose
本文首发
http://www.itmuch.com/docker/28-docker-compose-in-action-elk/
作者:周立_itmuch
链接:https://www.jianshu.com/p/9791f1d35c93
来源:简书
著作权归作者所有。商业转载请联系作者获得授权,非商业转载请注明出处。
若有收获,就点个赞吧
0 人点赞
