Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Kibana入門
Search
Yusuke Mito
November 12, 2013
Technology
62
51k
Kibana入門
第2回elasticsearch勉強会の発表資料です。
Kibanaの基本的な使い方について網羅的にまとめました。
Yusuke Mito
November 12, 2013
Tweet
Share
More Decks by Yusuke Mito
See All by Yusuke Mito
マイクロサービス環境における監視の効率化
y310
0
1.6k
GraphQL Q&A
y310
7
3.8k
Ruby on Rails Introduction
y310
0
300
WWDC2014 これだけ押さえておけば間違いなし! おすすめセッションTOP10
y310
11
5.5k
NSUserDefaultsの中身を見る
y310
0
2.2k
xctoolで爆速テスト
y310
2
1.6k
Other Decks in Technology
See All in Technology
【OptimizationNight】数理最適化のラストワンマイルとしてのUIUX
brainpadpr
0
160
生成AI導入の効果を最大化する データ活用戦略
ham0215
0
110
リリース2ヶ月で収益化した話
kent_code3
1
180
Google Agentspaceを実際に導入した効果と今後の展望
mixi_engineers
PRO
2
330
オブザーバビリティプラットフォーム開発におけるオブザーバビリティとの向き合い / Hatena Engineer Seminar #34 オブザーバビリティの実現と運用編
arthur1
0
340
20250807_Kiroと私の反省会
riz3f7
0
130
LLMをツールからプラットフォームへ〜Ai Workforceの戦略〜 #BetAIDay
layerx
PRO
1
840
【Λ(らむだ)】最近のアプデ情報 / RPALT20250729
lambda
0
230
alecthomas/kong はいいぞ
fujiwara3
6
1.4k
SRE新規立ち上げ! Hubbleインフラのこれまでと展望
katsuya0515
0
160
モバイルゲームの開発を支える基盤の歩み ~再現性のある開発ラインを量産する秘訣~
qualiarts
0
1.1k
LLMで構造化出力の成功率をグンと上げる方法
keisuketakiguchi
0
320
Featured
See All Featured
Fireside Chat
paigeccino
38
3.6k
Large-scale JavaScript Application Architecture
addyosmani
512
110k
Fantastic passwords and where to find them - at NoRuKo
philnash
51
3.4k
Code Review Best Practice
trishagee
69
19k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
367
26k
Writing Fast Ruby
sferik
628
62k
For a Future-Friendly Web
brad_frost
179
9.9k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
332
22k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.8k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
667
120k
The MySQL Ecosystem @ GitHub 2015
samlambert
251
13k
Scaling GitHub
holman
461
140k
Transcript
,JCBOBೖ ਫށ༞հ!Z@
୭ʁ
! ਫށ༞հ.JUP:VTVLF $00,1"%גࣜձٕࣾज़෦ ΞϓϦέʔγϣϯΤϯδχΞ ҎલαʔϏε։ൃɺ࠷ۙ3&45"1*ͷ։ൃͳͲ Z !Z@
,JCBOB
ࠓͷ͓ wͳͥ,JCBOBʁ w,JCBOBͷ͍ํ w,JCBOB5JQT
ࠓͷ͓ wͳͥ,JCBOBʁ w,JCBOBͷ͍ํ w,JCBOB5JQT
·ͣجຊใ͔Β
,JCBOBͱʁ w ϩάղੳՄࢹԽπʔϧ w MPHTUBTIͰूΊͨϩάΛՄࢹԽ͢ΔͨΊʹ࡞ΒΕͨ w ʹ&MBTUJDTFBSDIͷެࣜπʔϧԽ w IUUQTHJUIVCDPNFMBTUJDTFBSDILJCBOB w
MPHTUBTIͷґଘͳ͘ɺqVFOUEͳͲ؆୯ʹ࿈ܞՄೳ
ߏ &MBTUJDTFBSDI ,JCBOB MPHTUBTI qVFOUE
ಛ w,JCBOBࣗମ)5.-$44+4ͷΈ wͭ·Γ8FCαʔό͚ͩͰ৴Մೳ XHFUIUUQEPXOMPBEFMBTUJDTFBSDIPSHLJCBOBLJCBOBLJCBOBMBUFTU[JQ VO[JQLJCBOBMBUFTU[JQ SVCZSTJOBUSBFTFUQVCMJD@EJS lLJCBOBMBUFTU
ಛ ύωϧΛՃͯ͠ ΈͷμογϡϘʔυΛ࡞ΕΔ
ಛ w࡞ͬͨμογϡϘʔυ FMBTUJDTFBSDIʹอଘ wετϨʔδෆཁ
,JCBOBΛ͏ཧ༝
ϩάΛݟΔͱ͖ʹ Α͋͘Δ͜ͱ
ຖճݟ͍͕ͨ݅มΘΔ ͋ΔϢʔβͷΞΫηεΛ͍ͨ͠ ͜ͷϖʔδʹΞΫηε͞Εͨճ J04ͱ"OESPJEͷΞΫηεൺ ฏۉϨεϙϯελΠϜ FUDʜ
ૉૣ͘Λݟ͍ͨ ϐʔΫλΠϜԿ࣌ࠒʁ ٳͷτϥϑΟοΫฏʹൺͯͲ͏ʁ Τϥʔى͖͍ͯͳ͍ʁ FUDʜ
Ͱɺৄࡉݟ͍ͨ ͜ͷ࣌ͷΫΤϦύϥϝʔλԿʁ ͜ͷάϥϑͷεύΠΫԿʁ Ͳ͔͜Β͜ͷϖʔδʹདྷͨͷʁ FUDʜ
ݟ͍ͨ࣌ʹ ݟ͍ͨใΛ ૉૣ͘
,JCBOBͳΒશ෦Ͱ͖Δ
ࠓͷ͓ wͳͥ,JCBOBʁ w,JCBOBͷ͍ํ w,JCBOB5JQT
αϯϓϧσʔλ χίχίσʔληοτಈըϝλσʔλ IUUQXXXOJJBDKQDTDFOUFSJESOJDPOJDPIUNM
ఏڙ ג υϫϯΰ ࠃཱใֶݚڀॴ
/BWJHBUJPO 3PX 3PX 1BOFM 1BOFM 1BOFM
2VFSZ ݕࡧΫΤϦΛೖྗ͢ΔҰ൪جຊͱͳΔύωϧ MVDFOFΫΤϦ͕ॻ͚Δ NPWJF@UZQFNQ NPWJF@UZQFqW
'JMUFSJOH ݱࡏͷΫΤϦʹର͔͔͍ͯͬͯ͠ΔߜΓࠐΈ݅Λදࣔ ظؒͷߜΓࠐΈ NPWJF@UZQFͷߜΓࠐΈ
4BWF-PBE FMBTUJDTFBSDIͷLJCBOBJOUΠϯσοΫε͔ΒอଘͱಡΈࠐΈ μογϡϘʔυΛ࡞ͬͨΒϦϩʔυલʹඞͣอଘʂ
)JTUPHSBN ࣌ܥྻσʔλΛදࣔ͢Δ Ұ൪͏͜ͱʹͳΔύωϧ -JOFT #BST 1PJOUT
)JUT ΫΤϦ͝ͱͷ૯ώοτ݅ΛάϥϑԽ
4QBSLMJOFT ΫΤϦ͝ͱͷ͚ͩΛՄࢹԽ IUUQTUXJUUFSDPNSBTIJELQDTUBUVT
5FSNT GBDFUTͷ݁ՌΛ#BS 1JF 5BCMFͰάϥϑԽ ίϝϯτͷGBDFU
5SFOET ࢦఆ͔ͨ࣌͠ΒͷͷมԽΛදࣔ ʮલൺ/૿Ճʯ ʮલൺ.ݮগʯͳͲ
.BQ GBDFUͷ݁ՌΛਤ্ͰՄࢹԽ ຊਤ1VMMSFRVFTUΛग़ͨ͠ͷͷٞதʜ IUUQTHJUIVCDPNFMBTUJDTFBSDILJCBOBQVMM
#FUUFS.BQ ҢɾܦΛݩʹϚοϐϯά
5BCMF ΫΤϦʹϚονͨ͠υΩϡϝϯτͷ༰Λදࣔ
$PMVNO ύωϧΛॎʹฒΒΕΔύωϧ
5FYU )5.- NBSLEPXO QMBJOUFYUͰςΩετΛදࣔ
DEMO
ΫΤϦͷॻ͖ํ
λΠτϧʹʮՎͬͯΈͨʯΛؚΉಈը UJUMFlՎͬͯΈͨz ಈըܗࣜNQҎ֎ͷಈը NPWJF@UZQFNQ ࠶ੜ࣌ؒະຬͷಈը MFOHUI< 50> λΠτϧʹʮՎͬͯΈͨʯΛؚΉNQಈը UJUMFlՎͬͯΈͨz"/%NPWJF@UZQFNQ /05
NPWJF@UZQFNQ ·ͨ ࠶ੜ࣌ؒະຬͷಈը MFOHUI< 50>
ෳͷΫΤϦͷ݁ՌΛൺֱ
ಈըܗࣜͷൺֱ GBDFUͰऔಘͨ͠Ωʔϫʔυ͔Βࣗಈతʹݕࡧ
ಈըϑΝΠϧαΠζͷฏۉ ϑΟʔϧυͷฏۉΛάϥϑԽ ଞʹɺ࠷େɺ࠷খɺ߹ܭܭࢉՄೳ
ࠓͷ͓ wͳͥ,JCBOBʁ w,JCBOBͷ͍ํ w,JCBOB5JQT
JOEFYͱUZQF MPHTUBTI BDDFTT@MPH JOEFY UZQF FWFOU@MPH UZQF MPHTUBTI BDDFTT@MPH JOEFY
UZQF FWFOU@MPH UZQF MPHTUBTI BDDFTT@MPH JOEFY UZQF FWFOU@MPH UZQF ͭͷJOEFYʹҟͳΔεΩʔϚΛ࣋ͭσʔλΛೖΕΒΕΔ ͭͷJOEFYʹೖΕΔ͜ͱͰάϥϑΛॏͶͯൺֱͳͲ͕Ͱ͖Δ
NBQQJOH w NBQQJOHࣗಈతʹఆٛ͞ΕΔ w େ֓ɺͪΐͬͱ͏·͍͔͘ͳ͍ w ܕ͕JOUFHFSͰͳ͘MPOHʹͳΔ w ύεจࣈྻ͕͔ͪॻ͖͞Εͯ͠·͏ w
ͳͲ
{! "template": "logstash-*",! "settings" : {! "number_of_shards" : 1,! "number_of_replicas"
: 0! },! "mappings": {! “access_log": { ! "_source": { "compress": true },! "dynamic_templates": [! {! "string_template" : { ! "match" : "*",! "mapping": { "type": "string", "index": "not_analyzed" },! "match_mapping_type" : "string"! } ! }! ],! "properties" : {! "path" : {! "type": "multi_field",! "fields" : {! "analyzed" : {"type":"string", "index" : "analyzed"},! "no_analyzed": {"type":"string", "index" : "not_analyzed"}! }! },! "agent" : {! "type": "multi_field",! "fields" : {! "analyzed" : {"type":"string", "index" : "analyzed"},! "no_analyzed": {"type":"string", "index" : "not_analyzed"}! }! },! "referer" : {! "type": "multi_field",! "fields" : {! "analyzed" : {"type":"string", "index" : "analyzed"},! "no_analyzed": {"type":"string", "index" : "not_analyzed"}! }! },! "@timestamp" : { "type" : "date", "index" : "not_analyzed" }! }! }! }! } curl -XPUT localhost:9200/_template/logstash_template JOEFYUFNQMBUF MPHTUBTIͰ࢝·ΔJOEFYʹࣗಈతʹద༻ UZQF͕BDDFTT@MPHͷυΩϡϝϯτʹద༻ ͭͷϓϩύςΟΛෳͷpFMEʹల։ ͔ͪॻ͖Λ͠ͳ͍
ੑೳ w &$NMBSHFʷ w ͷΠϯσοΫεαΠζ͕(#Λ͑Δ͋ͨΓͰ FMBTUJDTFBSDI͕٧·Γ࢝ΊΔ w 0VU0G.FNPSZ&SSPSͳͲΛు͍ͯ΄ͱΜͲJNQPSUΛड͚͚ ͳ͘ͳΔ w
qVFOUEʹσʔλ͕ͨ·ΓόοϑΝΦʔόʔͰσʔλΛࣦ͏ʜ
ੑೳ w ͦͷޙɺ+7.ͷ($ύϥϝʔλνϡʔχϯάʹΑΓͳΜͱ͔҆ఆ w ϐʔΫ࣌Ͱ.CQTఔͷτϥϑΟοΫʹ͑ΒΕΔ͜ͱΛ֬ೝ νϡʔχϯάͷৄࡉʹ͍ͭͯ !DPO@NBNFʹฉ͍͍ͯͩ͘͞ ΦϒδΣΫτ͕େྔʹੜɺআ͞ΕΔ͜ͱͰසൟʹ'VMM($͕͍ͬͯͨͷ͕ݪҼ /FXྖҬͷαΠζΛ͛ͯ4DBWFOHF($Ͱճऩ͞ΕΔΑ͏ʹ͢Δ͜ͱͰ'VMM($ͷൃੜ සΛͰ͖Δ͚ͩԼ͛ΔΑ͏ʹͨ͠
࠷৽ใΛ͏ w HJUIVCͷNBTUFShttps://github.com/elasticsearch/kibana w ຖͷΑ͏ʹػೳՃσβΠϯมߋ͕ى͖͍ͯ·͢ w ͨ·ʹͪΐͬͱյΕͯ·͢ w ެࣜCMPHhttp://www.elasticsearch.org/blog/ w
,JCBOBͷهࣄ ϲ݄ʹຊͰ͕͢།Ұͷ৽ػೳհใͰ͢ w EFNPLJCBOBPSHhttp://demo.kibana.org/ w खͬऔΓૣ͘࠷৽൛ΛࢼͤΔ