monitor
play

Monitor with the Stack Philipp Krenn @xeraa 1 Infrastructure | - PowerPoint PPT Presentation

Jan 23, 2024 •218 likes •1.08k views

Monitor with the Stack Philipp Krenn @xeraa 1 Infrastructure | Developer Advocate 2 Disclaimer This is not a training https://www.elastic.co/training 3 Who Is Using Elasticsearch Logstash and Kibana Beats 4 5 6 7

  1. Monitor with the Stack Philipp Krenn ����� @xeraa 1

  2. Infrastructure | Developer Advocate 2

  3. Disclaimer This is not a training https://www.elastic.co/training 3

  4. Who Is Using Elasticsearch Logstash and Kibana Beats 4

  5. 5

  6. 6

  7. 7

  8. Starting Point https://github.com/xeraa/mongodb-monitoring 8

  9. USB Sticks 9

  10. Box Vagrant Ansible Provisioner 10

  11. Credentials vagrant & vagrant 11

  12. SSH $ ssh vagrant@127.0.0.1 -p 2222 -o PreferredAuthentications=password Windows: http://www.putty.org 12

  13. Ansible $ cd /elastic-stack/ $ ls 13

  14. 14

  15. REST $ curl -XGET -u "elastic:changeme" http://localhost:9200/ 15

  16. 16

  17. Login http://localhost:5601 elastic & changeme 17

  18. 18

  19. Filebeat 19

  20. Filebeat Modules 20

  21. System Dashboards 21

  22. 22

  23. MongoDB Logs /var/log/mongodb/mongod.log 23

  24. /etc/filebeat/filebeat.yml filebeat.prospectors: - input_type: log paths: - /var/log/mongodb/mongod.log document_type: mongodb 24

  25. PS: Multiline Logs 25

  26. /etc/filebeat/filebeat.yml filebeat.prospectors: - input_type: log paths: - /var/log/java-app/*.log document_type: java multiline.pattern: '^[[:space:]]' multiline.negate: false multiline.match: after 26

  27. Test $ java -jar /opt/pocdriver/bin/POCDriver.jar -k 20 -i 10 -u 10 -b 20 27

  28. Kibana Discover Limit Kibana view to the mongodb type 28

  29. 29

  30. Grok Patterns https://github.com/logstash-plugins/logstash-patterns- core/blob/master/patterns/grok-patterns 30

  31. MongoDB Patterns https://github.com/logstash-plugins/logstash-patterns- core/blob/master/patterns/mongodb 31

  32. Building Patterns Grokdebug in Kibana 5.5+ (X-Pack Basic) https://grokdebug.herokuapp.com 32

  33. 33

  34. /etc/filebeat/filebeat.yml output.elasticsearch: hosts: ["localhost:9200"] username: "{{ elastic_user }}" password: "{{ elastic_password }}" pipeline: "mongodb_log" 34

  35. Console Pattern in a single line PUT _ingest/pipeline/mongodb_log { "description": "Ingest pipeline for MongoDB logs", "processors": [ { "grok": { "field": "message", "patterns": [ "%{TIMESTAMP_ISO8601:timestamp}%{SPACE}%{MONGO3_SEVERITY:mongodb.severity} %{SPACE}%{MONGO3_COMPONENT:mongodb.component}%{SPACE} (?:[%{DATA:mongodb.context}])?%{SPACE}%{GREEDYDATA:message}" ] } } ] } 35

  36. Filebeat Restart $ sudo service filebeat restart 36

  37. Test $ java -jar /opt/pocdriver/bin/POCDriver.jar -k 20 -i 10 -u 10 -b 20 37

  38. Refresh Field List Management → Index Patterns → filebeat-* → Refresh field list 38

  39. Visualize mongodb.component of log events 39

  40. 40

  41. 41

  42. Fetch the Slow Log 42

  43. /etc/logstash/conf.d/00-mongodb- input.conf input { mongodb { uri => 'mongodb://127.0.0.1:27017/POCDB' placeholder_db_dir => '/var/local/logstash-mongodb/' collection => 'system.profile' batch_size => 500 generateId => true } } 43

  44. /etc/logstash/conf.d/20-elasticsearch- output.conf output { elasticsearch { hosts => ["localhost:9200"] manage_template => false index => "mongodb-%{+YYYY.MM.dd}" document_type => "slowlog" user => "{{ elastic_user }}" password => "{{ elastic_password }}" } } 44

  45. Logstash Restart $ sudo service logstash restart 45

  46. Debug Logstash $ less /var/log/logstash/logstash-plain.log 46

  47. Doesn't Work Getting data from system collections https://github.com/phutchins/logstash-input-mongodb/issues/8 47

  48. Extension Idea Build an exec filter to run slow queries against MongoDB's .explain() 48

  49. Metricbeat 49

  50. Metricbeat System 50

  51. Metricbeat Service 51

  52. /etc/metricbeat/metricbeat.yml - module: mongodb metricsets: ["dbstats", "status"] hosts: ["localhost:27017"] 52

  53. Metricbeat Restart $ sudo service metricbeat restart 53

  54. Test $ java -jar /opt/pocdriver/bin/POCDriver.jar -k 20 -i 10 -u 10 -b 20 54

  55. 55

  56. Visual Builder mongodb.status.network.in.bytes vs mongodb.status.network.out.bytes 56

  57. 57

  58. Packetbeat 58

  59. Protocols 59

  60. Flows Application layer: Unsupported / encrypted (TLS) protocols IP / TCP / UDP Number of packets & bytes Retransmissions Temporal flow 60

  61. /etc/packetbeat/packetbeat.yml packetbeat.protocols.mongodb: ports: [27017] 61

  62. Packetbeat Restart $ sudo service packetbeat restart 62

  63. Test $ java -jar /opt/pocdriver/bin/POCDriver.jar -k 20 -i 10 -u 10 -b 20 63

  64. 64

  65. Heartbeat 65

  66. Heartbeat ICMP, TCP, HTTP, HTTPS 66

  67. /etc/heartbeat/heartbeat.yml heartbeat.monitors: - type: tcp hosts: ["127.0.0.1:27017"] schedule: '@every 10s' 67

  68. Heartbeat Restart $ sudo service heartbeat restart 68

  69. Test $ sudo service mongod stop $ sudo service mongod start 69

  70. Visualize Up or down and TCP response times 70

  71. 71

  72. 72

  73. Dashboard Combining visualizations 73

  74. 74

  75. Winlogbeat 75

  76. libbeat https://github.com/elastic/beats/tree/master/generate/beat 76

  77. 77

  78. X-Pack Security Monitoring Graph Reporting Alerting Machine Learning 78

  79. X-Pack Basic 79

  80. Conclusion 80

  81. 81

  82. 82

  83. 83

  84. Thanks! Questions? Philipp Krenn ����� @xeraa 84

Recommend

Dual-Monitor Mount Op/ons 12/21/15 1 Why Do We Need Monitor Arms? Removes the monitor from the

Dual-Monitor Mount Op/ons 12/21/15 1 Why Do We Need Monitor Arms? Removes the monitor from the

Dual-Monitor Mount Op/ons 12/21/15 1 Why Do We Need Monitor Arms? Removes the monitor from the desk freeing up valuable desk space Facilitates instant height and depth adjustment of the screen/s for comfortable viewing and op/mal

393 views • 14 slides
Take control Monitor and verify shipping and delivery Monitor paper grade and storage

Take control Monitor and verify shipping and delivery Monitor paper grade and storage

Take control Monitor and verify shipping and delivery Monitor paper grade and storage visibility Minimize buffer stocks and working capital requirements Monitor and streamline production in real time Inaccurate input and damaged

249 views • 3 slides
Monitors Monitors 1 What What Is What What Is Is a Monitor? Is a Monitor? Monitor? -

Monitors Monitors 1 What What Is What What Is Is a Monitor? Is a Monitor? Monitor? -

Monitors Monitors 1 What What Is What What Is Is a Monitor? Is a Monitor? Monitor? - Basics onitor? - Basics Basics Basics Monitor is a highly structured programming Monitor is a highly structured programming language construct.

268 views • 26 slides
Bainbridge Farms Monitor Farm History of the Monitor Farm What we were doing What were

Bainbridge Farms Monitor Farm History of the Monitor Farm What we were doing What were

Bainbridge Farms Monitor Farm History of the Monitor Farm What we were doing What were our goals What have we achieved? Livestock Efficiency 2 x 500kg cows V 1 x 1000kg cow 2 x 235kg calves in 200 days 1 x 470kg calf in ?????

393 views • 12 slides
EFFECTIVENESS Monitor status and trends Monitor effectiveness of actions Develop

EFFECTIVENESS Monitor status and trends Monitor effectiveness of actions Develop

STEP 8: MONITORING STATUS AND EFFECTIVENESS Monitor status and trends Monitor effectiveness of actions Develop effective monitoring plan WHY MONITOR: Transparency and accountability (to public, to donors) Better decision

320 views • 8 slides
JAIL MONITOR TRAINING STEPHANIE LARRICK JUVENILE DETENTION COMPLIANCE MONITOR CRIMINAL JUSTICE

JAIL MONITOR TRAINING STEPHANIE LARRICK JUVENILE DETENTION COMPLIANCE MONITOR CRIMINAL JUSTICE

JAIL MONITOR TRAINING STEPHANIE LARRICK JUVENILE DETENTION COMPLIANCE MONITOR CRIMINAL JUSTICE COORDINATING COUNCIL 104 MARIETTA STREET SUITE 440 ATLANTA, GA 30303 AGENDA What is Expected as a Jail Monitor 1. What are We Monitoring - JJDPA

743 views • 22 slides
JAIL MONITOR TRAINING STEPHANIE LARRICK JUVENILE DETENTION COMPLIANCE MONITOR CRIMINAL JUSTICE

JAIL MONITOR TRAINING STEPHANIE LARRICK JUVENILE DETENTION COMPLIANCE MONITOR CRIMINAL JUSTICE

JAIL MONITOR TRAINING STEPHANIE LARRICK JUVENILE DETENTION COMPLIANCE MONITOR CRIMINAL JUSTICE COORDINATING COUNCIL 104 MARIETTA STREET SUITE 440 ATLANTA, GA 30303 AGENDA What is Expected as a Jail Monitor 1. What are We Monitoring - JJDPA

272 views • 23 slides
If we control these we can monitor & influence these If we control these

If we control these we can monitor & influence these If we control these

If we control these we can monitor & influence these If we control these we can monitor & influence these Spam conversion experiment Instrumented ~1.5% of Storms total output (2008) Pharmacy E-card Campaigns

833 views • 43 slides
Gas Jet Monitor for IOTA Sebastian Szustkowski 02/23/2018 Research supported by DOE GRAD (NIU:

Gas Jet Monitor for IOTA Sebastian Szustkowski 02/23/2018 Research supported by DOE GRAD (NIU:

Gas Jet Monitor for IOTA Sebastian Szustkowski 02/23/2018 Research supported by DOE GRAD (NIU: Swapan Chattopadhyay, PI and Bela Erdelyi, Co-PI) Gas Jet Monitor Motivation Turn-by-turn, two-dimensional transverse beam profile monitor to

232 views • 19 slides
Tracker Parameters Trending Tracker Parameters Trending Monitor Monitor GLAST I and T Workshop,

Tracker Parameters Trending Tracker Parameters Trending Monitor Monitor GLAST I and T Workshop,

GLAST LAT Project Instrument Analysis Meeting Feb 28, 2006 Tracker Parameters Trending Tracker Parameters Trending Monitor Monitor GLAST I and T Workshop, Feb 27 th , 2007 Tsunefumi Mizuno mizuno@hirax6.hepl.hiroshima-u.ac.jp All the work

126 views • 11 slides
A Systems Approach Ashley Vandiver GSETA 36 th Annual Workforce Development Conference October

A Systems Approach Ashley Vandiver GSETA 36 th Annual Workforce Development Conference October

Massachusetts Program Monitoring Process A Systems Approach Ashley Vandiver GSETA 36 th Annual Workforce Development Conference October 2018 Agenda Why Monitor What to Monitor How to Monitor 2 The Law: Why Monitor? 20 CFR

529 views • 41 slides
Office Print Monitor Office Print Monitor A Service from Lyra A Service from Lyra Research

Office Print Monitor Office Print Monitor A Service from Lyra A Service from Lyra Research

Office Print Monitor Office Print Monitor A Service from Lyra A Service from Lyra Research Research Powered by Powered by Lyras Lyras Office Print Monitor Office Print Monitor Partner with PrintFleet to access real-time print

487 views • 19 slides
Monitor ing the Dec lar ation of Commitment Monitor ing the Dec lar ation of Commitment on

Monitor ing the Dec lar ation of Commitment Monitor ing the Dec lar ation of Commitment on

Monitor ing the Dec lar ation of Commitment Monitor ing the Dec lar ation of Commitment on HIV/ AIDS & UNGASS indic ator s on HIV/ AIDS & UNGASS indic ator s Jos Antonio I zazola Chief, AIDS Financing and Economics Division

914 views • 22 slides
Optical Transition Radiation Monitor for the T2K experiment Mitchell Yu York University

Optical Transition Radiation Monitor for the T2K experiment Mitchell Yu York University

Optical Transition Radiation Monitor for the T2K experiment Mitchell Yu York University 2017/09/18 Overview The T2K experiment The Optical Transition Radiation (OTR) monitor OTR monitor operation history OTR monitor operation

661 views • 18 slides
MONITOR PATTERN CS4414 Lecture 15 CORNELL CS4414 - FALL 2020. 1 IDEA MAP FOR TODAY The monitor

MONITOR PATTERN CS4414 Lecture 15 CORNELL CS4414 - FALL 2020. 1 IDEA MAP FOR TODAY The monitor

Professor Ken Birman MONITOR PATTERN CS4414 Lecture 15 CORNELL CS4414 - FALL 2020. 1 IDEA MAP FOR TODAY The monitor pattern in C++ Reminder: Thread Concept Problems monitors solve (and problems they dont solve) Lightweight vs.

619 views • 49 slides
Why We Monitor Protect the community Identify issues to improve human health Tribal

Why We Monitor Protect the community Identify issues to improve human health Tribal

Why We Monitor Protect the community Identify issues to improve human health Tribal programs are equal to the State through US EPA What We Monitor Physical Parameters Nutrients BioAssessment Aquatic Insects

387 views • 16 slides
Beam Conditioning Monitor ATLAS, LHC Hvard Gjersdal havard.gjersdal@fys.uio.no EPF, UiO Beam

Beam Conditioning Monitor ATLAS, LHC Hvard Gjersdal havard.gjersdal@fys.uio.no EPF, UiO Beam

Beam Conditioning Monitor ATLAS, LHC Hvard Gjersdal havard.gjersdal@fys.uio.no EPF, UiO Beam Conditioning Monitor p. 1 This talk Introduction to the BCM Different setups Analysis Beam Conditioning Monitor p. 2 BCM 8 modules

454 views • 26 slides
December 2018 POLITICAL MONITOR 1 Ipsos MORI Political Monitor | Public December 2018 VOTING

December 2018 POLITICAL MONITOR 1 Ipsos MORI Political Monitor | Public December 2018 VOTING

December 2018 POLITICAL MONITOR 1 Ipsos MORI Political Monitor | Public December 2018 VOTING INTENTIONS 2 Ipsos MORI Political Monitor | Public Voting Intention: December 2018 HOW WOULD YOU VOTE IF THERE WERE A GENERAL ELECTION TOMORROW?.

739 views • 35 slides
October 2018 POLITICAL MONITOR 1 Ipsos MORI Political Monitor | Public October 2018 VOTING

October 2018 POLITICAL MONITOR 1 Ipsos MORI Political Monitor | Public October 2018 VOTING

October 2018 POLITICAL MONITOR 1 Ipsos MORI Political Monitor | Public October 2018 VOTING INTENTIONS 2 Ipsos MORI Political Monitor | Public Voting Intention: October 2018 HOW WOULD YOU VOTE IF THERE WERE A GENERAL ELECTION TOMORROW?.

492 views • 35 slides
1 Why Monitor Endotoxin in HD ? Why Monitor Endotoxin in HD ? Patients receiving hemodialysis

1 Why Monitor Endotoxin in HD ? Why Monitor Endotoxin in HD ? Patients receiving hemodialysis

The function of kidney is to remove excess salts & waste products from the human body. Nonfunctional kidneys leads to problem in maintaining the level of sodium, potassium, and minerals

369 views • 12 slides
Monitor Introduction Pro Series/ Value Series International Product Marketing Department Monitor

Monitor Introduction Pro Series/ Value Series International Product Marketing Department Monitor

Monitor Introduction Pro Series/ Value Series International Product Marketing Department Monitor Introduction Contents 01 Overview Pro Series 02 03 Value Series 04 Applications 01. Overview Naming Rule Product Family Product

648 views • 29 slides
The Support, Monitor & Advocate Model Three Key Roles Parents Can Play in Their Children's

The Support, Monitor & Advocate Model Three Key Roles Parents Can Play in Their Children's

The Support, Monitor & Advocate Model Three Key Roles Parents Can Play in Their Children's Education Overview Housekeeping About the Right Question School-Family Partnership Strategy Exploring the Support, Monitor, and Advocate

369 views • 35 slides
Simulation of a Diamond Tilt Monitor for the APS Short Pulse X-ray Source Shihao Tian,

Simulation of a Diamond Tilt Monitor for the APS Short Pulse X-ray Source Shihao Tian,

Simulation of a Diamond Tilt Monitor for the APS Short Pulse X-ray Source Shihao Tian, Hampden-Sydney college Supervised by: Bingxin Yang Argonne National Laboratory 2011.8.12 SPX Overview Diamond Tilt Monitor Background Information The

291 views • 11 slides
Wiretapping with Audio Frequency Monitor AN/PTA-1 Presented by Mark J. Blair NF6X at the 2017

Wiretapping with Audio Frequency Monitor AN/PTA-1 Presented by Mark J. Blair NF6X at the 2017

Wiretapping with Audio Frequency Monitor AN/PTA-1 Presented by Mark J. Blair NF6X at the 2017 MRCG Meet Audio Frequency Monitor AN/PTA-1 Wire tapping device for field telephone lines 1954 TM with changes dated 1960, 1962

611 views • 16 slides

More recommend