Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Kibana入門
Search
Yusuke Mito
November 12, 2013
Technology
62
51k
Kibana入門
第2回elasticsearch勉強会の発表資料です。
Kibanaの基本的な使い方について網羅的にまとめました。
Yusuke Mito
November 12, 2013
Tweet
Share
More Decks by Yusuke Mito
See All by Yusuke Mito
マイクロサービス環境における監視の効率化
y310
0
1.4k
GraphQL Q&A
y310
7
3.6k
Ruby on Rails Introduction
y310
0
260
WWDC2014 これだけ押さえておけば間違いなし! おすすめセッションTOP10
y310
11
5.4k
NSUserDefaultsの中身を見る
y310
0
2.1k
xctoolで爆速テスト
y310
2
1.6k
Other Decks in Technology
See All in Technology
watsonx.ai Dojo #5 ファインチューニングとInstructLAB
oniak3ibm
PRO
0
170
スタートアップで取り組んでいるAzureとMicrosoft 365のセキュリティ対策/How to Improve Azure and Microsoft 365 Security at Startup
yuj1osm
0
220
オプトインカメラ:UWB測位を応用したオプトイン型のカメラ計測
matthewlujp
0
180
マルチプロダクト開発の現場でAWS Security Hubを1年以上運用して得た教訓
muziyoshiz
3
2.3k
社外コミュニティで学び社内に活かす共に学ぶプロジェクトの実践/backlogworld2024
nishiuma
0
260
Snykで始めるセキュリティ担当者とSREと開発者が楽になる脆弱性対応 / Getting started with Snyk Vulnerability Response
yamaguchitk333
2
190
LINEヤフーのフロントエンド組織・体制の紹介【24年12月】
lycorp_recruit_jp
0
530
.NET 9 のパフォーマンス改善
nenonaninu
0
970
【re:Invent 2024 アプデ】 Prompt Routing の紹介
champ
0
140
2024年にチャレンジしたことを振り返るぞ
mitchan
0
140
ガバメントクラウドのセキュリティ対策事例について
fujisawaryohei
0
550
KnowledgeBaseDocuments APIでベクトルインデックス管理を自動化する
iidaxs
1
260
Featured
See All Featured
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.3k
Bootstrapping a Software Product
garrettdimon
PRO
305
110k
Building an army of robots
kneath
302
44k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
38
1.9k
Raft: Consensus for Rubyists
vanstee
137
6.7k
Site-Speed That Sticks
csswizardry
2
190
No one is an island. Learnings from fostering a developers community.
thoeni
19
3k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
95
17k
The Web Performance Landscape in 2024 [PerfNow 2024]
tammyeverts
2
290
Building Better People: How to give real-time feedback that sticks.
wjessup
365
19k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
28
4.4k
Scaling GitHub
holman
458
140k
Transcript
,JCBOBೖ ਫށ༞հ!Z@
୭ʁ
! ਫށ༞հ.JUP:VTVLF $00,1"%גࣜձٕࣾज़෦ ΞϓϦέʔγϣϯΤϯδχΞ ҎલαʔϏε։ൃɺ࠷ۙ3&45"1*ͷ։ൃͳͲ Z !Z@
,JCBOB
ࠓͷ͓ wͳͥ,JCBOBʁ w,JCBOBͷ͍ํ w,JCBOB5JQT
ࠓͷ͓ wͳͥ,JCBOBʁ w,JCBOBͷ͍ํ w,JCBOB5JQT
·ͣجຊใ͔Β
,JCBOBͱʁ w ϩάղੳՄࢹԽπʔϧ w MPHTUBTIͰूΊͨϩάΛՄࢹԽ͢ΔͨΊʹ࡞ΒΕͨ w ʹ&MBTUJDTFBSDIͷެࣜπʔϧԽ w IUUQTHJUIVCDPNFMBTUJDTFBSDILJCBOB w
MPHTUBTIͷґଘͳ͘ɺqVFOUEͳͲ؆୯ʹ࿈ܞՄೳ
ߏ &MBTUJDTFBSDI ,JCBOB MPHTUBTI qVFOUE
ಛ w,JCBOBࣗମ)5.-$44+4ͷΈ wͭ·Γ8FCαʔό͚ͩͰ৴Մೳ XHFUIUUQEPXOMPBEFMBTUJDTFBSDIPSHLJCBOBLJCBOBLJCBOBMBUFTU[JQ VO[JQLJCBOBMBUFTU[JQ SVCZSTJOBUSBFTFUQVCMJD@EJS lLJCBOBMBUFTU
ಛ ύωϧΛՃͯ͠ ΈͷμογϡϘʔυΛ࡞ΕΔ
ಛ w࡞ͬͨμογϡϘʔυ FMBTUJDTFBSDIʹอଘ wετϨʔδෆཁ
,JCBOBΛ͏ཧ༝
ϩάΛݟΔͱ͖ʹ Α͋͘Δ͜ͱ
ຖճݟ͍͕ͨ݅มΘΔ ͋ΔϢʔβͷΞΫηεΛ͍ͨ͠ ͜ͷϖʔδʹΞΫηε͞Εͨճ J04ͱ"OESPJEͷΞΫηεൺ ฏۉϨεϙϯελΠϜ FUDʜ
ૉૣ͘Λݟ͍ͨ ϐʔΫλΠϜԿ࣌ࠒʁ ٳͷτϥϑΟοΫฏʹൺͯͲ͏ʁ Τϥʔى͖͍ͯͳ͍ʁ FUDʜ
Ͱɺৄࡉݟ͍ͨ ͜ͷ࣌ͷΫΤϦύϥϝʔλԿʁ ͜ͷάϥϑͷεύΠΫԿʁ Ͳ͔͜Β͜ͷϖʔδʹདྷͨͷʁ FUDʜ
ݟ͍ͨ࣌ʹ ݟ͍ͨใΛ ૉૣ͘
,JCBOBͳΒશ෦Ͱ͖Δ
ࠓͷ͓ wͳͥ,JCBOBʁ w,JCBOBͷ͍ํ w,JCBOB5JQT
αϯϓϧσʔλ χίχίσʔληοτಈըϝλσʔλ IUUQXXXOJJBDKQDTDFOUFSJESOJDPOJDPIUNM
ఏڙ ג υϫϯΰ ࠃཱใֶݚڀॴ
/BWJHBUJPO 3PX 3PX 1BOFM 1BOFM 1BOFM
2VFSZ ݕࡧΫΤϦΛೖྗ͢ΔҰ൪جຊͱͳΔύωϧ MVDFOFΫΤϦ͕ॻ͚Δ NPWJF@UZQFNQ NPWJF@UZQFqW
'JMUFSJOH ݱࡏͷΫΤϦʹର͔͔͍ͯͬͯ͠ΔߜΓࠐΈ݅Λදࣔ ظؒͷߜΓࠐΈ NPWJF@UZQFͷߜΓࠐΈ
4BWF-PBE FMBTUJDTFBSDIͷLJCBOBJOUΠϯσοΫε͔ΒอଘͱಡΈࠐΈ μογϡϘʔυΛ࡞ͬͨΒϦϩʔυલʹඞͣอଘʂ
)JTUPHSBN ࣌ܥྻσʔλΛදࣔ͢Δ Ұ൪͏͜ͱʹͳΔύωϧ -JOFT #BST 1PJOUT
)JUT ΫΤϦ͝ͱͷ૯ώοτ݅ΛάϥϑԽ
4QBSLMJOFT ΫΤϦ͝ͱͷ͚ͩΛՄࢹԽ IUUQTUXJUUFSDPNSBTIJELQDTUBUVT
5FSNT GBDFUTͷ݁ՌΛ#BS 1JF 5BCMFͰάϥϑԽ ίϝϯτͷGBDFU
5SFOET ࢦఆ͔ͨ࣌͠ΒͷͷมԽΛදࣔ ʮલൺ/૿Ճʯ ʮલൺ.ݮগʯͳͲ
.BQ GBDFUͷ݁ՌΛਤ্ͰՄࢹԽ ຊਤ1VMMSFRVFTUΛग़ͨ͠ͷͷٞதʜ IUUQTHJUIVCDPNFMBTUJDTFBSDILJCBOBQVMM
#FUUFS.BQ ҢɾܦΛݩʹϚοϐϯά
5BCMF ΫΤϦʹϚονͨ͠υΩϡϝϯτͷ༰Λදࣔ
$PMVNO ύωϧΛॎʹฒΒΕΔύωϧ
5FYU )5.- NBSLEPXO QMBJOUFYUͰςΩετΛදࣔ
DEMO
ΫΤϦͷॻ͖ํ
λΠτϧʹʮՎͬͯΈͨʯΛؚΉಈը UJUMFlՎͬͯΈͨz ಈըܗࣜNQҎ֎ͷಈը NPWJF@UZQFNQ ࠶ੜ࣌ؒະຬͷಈը MFOHUI< 50> λΠτϧʹʮՎͬͯΈͨʯΛؚΉNQಈը UJUMFlՎͬͯΈͨz"/%NPWJF@UZQFNQ /05
NPWJF@UZQFNQ ·ͨ ࠶ੜ࣌ؒະຬͷಈը MFOHUI< 50>
ෳͷΫΤϦͷ݁ՌΛൺֱ
ಈըܗࣜͷൺֱ GBDFUͰऔಘͨ͠Ωʔϫʔυ͔Βࣗಈతʹݕࡧ
ಈըϑΝΠϧαΠζͷฏۉ ϑΟʔϧυͷฏۉΛάϥϑԽ ଞʹɺ࠷େɺ࠷খɺ߹ܭܭࢉՄೳ
ࠓͷ͓ wͳͥ,JCBOBʁ w,JCBOBͷ͍ํ w,JCBOB5JQT
JOEFYͱUZQF MPHTUBTI BDDFTT@MPH JOEFY UZQF FWFOU@MPH UZQF MPHTUBTI BDDFTT@MPH JOEFY
UZQF FWFOU@MPH UZQF MPHTUBTI BDDFTT@MPH JOEFY UZQF FWFOU@MPH UZQF ͭͷJOEFYʹҟͳΔεΩʔϚΛ࣋ͭσʔλΛೖΕΒΕΔ ͭͷJOEFYʹೖΕΔ͜ͱͰάϥϑΛॏͶͯൺֱͳͲ͕Ͱ͖Δ
NBQQJOH w NBQQJOHࣗಈతʹఆٛ͞ΕΔ w େ֓ɺͪΐͬͱ͏·͍͔͘ͳ͍ w ܕ͕JOUFHFSͰͳ͘MPOHʹͳΔ w ύεจࣈྻ͕͔ͪॻ͖͞Εͯ͠·͏ w
ͳͲ
{! "template": "logstash-*",! "settings" : {! "number_of_shards" : 1,! "number_of_replicas"
: 0! },! "mappings": {! “access_log": { ! "_source": { "compress": true },! "dynamic_templates": [! {! "string_template" : { ! "match" : "*",! "mapping": { "type": "string", "index": "not_analyzed" },! "match_mapping_type" : "string"! } ! }! ],! "properties" : {! "path" : {! "type": "multi_field",! "fields" : {! "analyzed" : {"type":"string", "index" : "analyzed"},! "no_analyzed": {"type":"string", "index" : "not_analyzed"}! }! },! "agent" : {! "type": "multi_field",! "fields" : {! "analyzed" : {"type":"string", "index" : "analyzed"},! "no_analyzed": {"type":"string", "index" : "not_analyzed"}! }! },! "referer" : {! "type": "multi_field",! "fields" : {! "analyzed" : {"type":"string", "index" : "analyzed"},! "no_analyzed": {"type":"string", "index" : "not_analyzed"}! }! },! "@timestamp" : { "type" : "date", "index" : "not_analyzed" }! }! }! }! } curl -XPUT localhost:9200/_template/logstash_template JOEFYUFNQMBUF MPHTUBTIͰ࢝·ΔJOEFYʹࣗಈతʹద༻ UZQF͕BDDFTT@MPHͷυΩϡϝϯτʹద༻ ͭͷϓϩύςΟΛෳͷpFMEʹల։ ͔ͪॻ͖Λ͠ͳ͍
ੑೳ w &$NMBSHFʷ w ͷΠϯσοΫεαΠζ͕(#Λ͑Δ͋ͨΓͰ FMBTUJDTFBSDI͕٧·Γ࢝ΊΔ w 0VU0G.FNPSZ&SSPSͳͲΛు͍ͯ΄ͱΜͲJNQPSUΛड͚͚ ͳ͘ͳΔ w
qVFOUEʹσʔλ͕ͨ·ΓόοϑΝΦʔόʔͰσʔλΛࣦ͏ʜ
ੑೳ w ͦͷޙɺ+7.ͷ($ύϥϝʔλνϡʔχϯάʹΑΓͳΜͱ͔҆ఆ w ϐʔΫ࣌Ͱ.CQTఔͷτϥϑΟοΫʹ͑ΒΕΔ͜ͱΛ֬ೝ νϡʔχϯάͷৄࡉʹ͍ͭͯ !DPO@NBNFʹฉ͍͍ͯͩ͘͞ ΦϒδΣΫτ͕େྔʹੜɺআ͞ΕΔ͜ͱͰසൟʹ'VMM($͕͍ͬͯͨͷ͕ݪҼ /FXྖҬͷαΠζΛ͛ͯ4DBWFOHF($Ͱճऩ͞ΕΔΑ͏ʹ͢Δ͜ͱͰ'VMM($ͷൃੜ සΛͰ͖Δ͚ͩԼ͛ΔΑ͏ʹͨ͠
࠷৽ใΛ͏ w HJUIVCͷNBTUFShttps://github.com/elasticsearch/kibana w ຖͷΑ͏ʹػೳՃσβΠϯมߋ͕ى͖͍ͯ·͢ w ͨ·ʹͪΐͬͱյΕͯ·͢ w ެࣜCMPHhttp://www.elasticsearch.org/blog/ w
,JCBOBͷهࣄ ϲ݄ʹຊͰ͕͢།Ұͷ৽ػೳհใͰ͢ w EFNPLJCBOBPSHhttp://demo.kibana.org/ w खͬऔΓૣ͘࠷৽൛ΛࢼͤΔ