2015-02-14 09:02:31 +01:00
# Fig ELK stack
2014-12-15 13:59:41 +01:00
2015-02-21 08:52:34 +01:00
[](https://gitter.im/deviantony/fig-elk?utm_source=badge& utm_medium=badge& utm_campaign=pr-badge& utm_content=badge)
2014-12-06 19:17:10 +01:00
Run the ELK (Elasticseach, Logstash, Kibana) stack with Fig and Docker.
2014-11-18 21:08:33 +01:00
2015-02-14 09:02:31 +01:00
It will give you the ability to quickly test your logstash filters and check how the data can be processed in Kibana.
NOTE: There is an issue with Docker 1.4.0 which prevents Fig from creating volumes. It has been fixed in Docker 1.4.1.
2014-11-19 20:04:51 +01:00
2014-11-19 19:04:36 +01:00
Based on 3 Docker images:
* [elk-elasticsearch ](https://github.com/deviantony/docker-elk-elasticsearch )
* [elk-logstash ](https://github.com/deviantony/docker-elk-logstash )
* [elk-kibana ](https://github.com/deviantony/docker-elk-kibana )
2014-11-18 21:08:33 +01:00
## Installation and use
1. Install [Docker ](http://docker.io ).
2. Install [Fig ](http://fig.sh ).
2014-11-19 17:43:45 +01:00
3. Clone this repository
2015-02-14 09:02:31 +01:00
4. Update the logstash-configuration in logstash-conf/logstash.conf (test your filters here)
2014-11-19 20:04:51 +01:00
5. fig up
6. nc localhost 5000 < /some/log/file.log
2014-11-19 21:05:42 +01:00
7. http://localhost:8080 to see the messages show up in Kibana 3.
8. http://localhost:5601 to use Kibana 4.
2014-11-18 21:08:33 +01:00
2014-11-19 21:07:39 +01:00
This will create 4 Docker containers with Elasticsearch, Logstash, Kibana 3 and Kibana 4 running in them and connected to each other. Four ports are exposed for access:
2014-11-18 21:08:33 +01:00
* 5000: Logstash TCP input.
* 9200: Elasticsearch HTTP (With Marvel plugin accessible via [http://localhost:9200/_plugin/marvel ](http://localhost:9200/_plugin/marvel ))
2014-11-19 21:06:32 +01:00
* 8080: Kibana 3 web interface.
* 5601: Kibana 4 web interface.
