Docker 安装
yum install y yum utils device mapper persistent data lvm2
为yum源添加docker仓库位置
yum config manager add repo https:
安装docker
yum install docker-ce
启动docker
systemctl start docker
下载docker compose
curl L https://get.daocloud.io/docker/compose/releases/download/1.24.0/docker-compose-`uname -s`-`uname -m` > /usr/local/bin/docker-compose
修改该文件的权限为可执行
chmod +x /usr/local/bin/docker-compose
查看是否安装成功
docker-compose --version
使用docker-compose 搭建elk环境
需要设置es系统内核参数,否则会因为内存不足无法启动。(不然启动后,docker直接内存泄漏)
# 改变设置
sysctl -w vm.max_map_count=262144
# 设置内核参数
$ echo "vm.max_map_count=262144" >> /etc/sysctl.conf
# 使立即生效
sysctl -p
# 重启 docker,让内核参数对docker服务生效
systemctl restart docker
创建一个存放logstash配置的目录并上传配置文件 logstash-springboot.conf文件内容
input {
tcp {
mode => "server"
host => "0.0.0.0"
port => 4560
codec => json_lines
}
}
output {
elasticsearch {
hosts => "es:9200"
index => "springboot-logstash-%{+YYYY.MM.dd}"
}
}
创建配置文件存放目录并上传配置文件到该目录
mkdir /mydata/logstash
docker-compose.yml内容
version: '3'
services:
elasticsearch:
image: elasticsearch:7.10.1
container_name: elasticsearch
environment:
- "cluster.name=elasticsearch"
- "discovery.type=single-node"
- "ES_JAVA_OPTS=-Xms215m -Xmx215m"
ports:
- 9200:9200
kibana:
image: kibana:7.10.1
container_name: kibana
links:
- elasticsearch:es
depends_on:
- elasticsearch
environment:
- "elasticsearch.hosts=http://es:9200"
- "I18N_LOCALE=zh-CN"
ports:
- 5601:5601
logstash:
image: logstash:7.10.1
container_name: logstash
volumes:
- /mydata/logstash/logstash-springboot.conf:/usr/share/logstash/pipeline/logstash.conf
depends_on:
- elasticsearch
links:
- elasticsearch:es
ports:
- 4560:4560
使用docker-compose命令运行
docker-compose up -d
在logstash中安装json_lines插件
docker exec -it logstash /bin/bash
cd /bin/
logstash-plugin install logstash-codec-json_lines
exit
docker restart logstash
查看日志
docker-compose logs -f kibana
docker-compose logs -f elsaticsearch
docker-compose logs -f logstash
如果基于服务器,最后再阿里云后台将各个端口开发就可以了。不然 外网是不能访问的
http:
spring boot 项目使用
<dependency>
<groupId>net.logstash.logback</groupId>
<artifactId>logstash-logback-encoder</artifactId>
<version>5.3</version>
</dependency>
项目增加配置文件logback-spring.xml
<springProperty scope="context" name="springAppName" source="spring.application.name"/>
<property name="LOG_FILE_PATH" value="${LOG_FILE:-${LOG_PATH:-${LOG_TEMP:-${java.io.tmpdir:-/tmp}}}/logs}"/>
<contextName>${APP_NAME}</contextName>
<appender name="FILE" class="ch.qos.logback.core.rolling.RollingFileAppender">
<rollingPolicy class="ch.qos.logback.core.rolling.TimeBasedRollingPolicy">
<fileNamePattern>${LOG_FILE_PATH}/${APP_NAME}-%d{yyyy-MM-dd}.log</fileNamePattern>
<maxHistory>30</maxHistory>
</rollingPolicy>
<encoder>
<pattern>${FILE_LOG_PATTERN}</pattern>
</encoder>
</appender>
<appender name="LOGSTASH" class="net.logstash.logback.appender.LogstashTcpSocketAppender">
<destination>服务器IP:4560</destination>
<encoder charset="UTF-8" class="net.logstash.logback.encoder.LoggingEventCompositeJsonEncoder">
<providers>
<timestamp>
<timeZone>UTC</timeZone>
</timestamp>
<pattern>
<pattern>
{
"logLevel": "%level",
"serviceName": "${springAppName:-}",
"pid": "${PID:-}",
"thread": "%thread",
"class": "%logger{40}",
"message": "%message"
}
</pattern>
</pattern>
</providers>
</encoder>
</appender>
<root level="INFO">
<appender-ref ref="CONSOLE"/>
<appender-ref ref="FILE"/>
<appender-ref ref="LOGSTASH"/>
</root>
```
测试代码
@RestController
@Slf4j
public class Test {
@GetMapping("/test")
public String test() {
log.info("测试");
return "test";
}
}
