Elk (Elastisearch Logstash Kibana): Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Zeile 1: | Zeile 1: | ||
+ | =Übersicht= | ||
+ | |||
+ | |||
+ | |||
+ | |||
=Installation= | =Installation= | ||
*wget -qO - https://artifacts.elastic.co/GPG-KEY-elasticsearch | sudo apt-key add - | *wget -qO - https://artifacts.elastic.co/GPG-KEY-elasticsearch | sudo apt-key add - | ||
Zeile 10: | Zeile 15: | ||
*systemctl enable elasticsearch.service | *systemctl enable elasticsearch.service | ||
*systemctl enable logstash.service | *systemctl enable logstash.service | ||
+ | |||
+ | |||
+ | |||
+ | |||
=Links= | =Links= | ||
*https://www.howtoforge.com/tutorial/suricata-with-elk-and-web-front-ends-on-ubuntu-bionic-beaver-1804-lts/ | *https://www.howtoforge.com/tutorial/suricata-with-elk-and-web-front-ends-on-ubuntu-bionic-beaver-1804-lts/ |
Version vom 16. Juni 2020, 08:44 Uhr
Übersicht
Installation
- wget -qO - https://artifacts.elastic.co/GPG-KEY-elasticsearch | sudo apt-key add -
- echo "deb https://artifacts.elastic.co/packages/6.x/apt stable main" | sudo tee -a /etc/apt/sources.list.d/elastic-6.x.list
- apt update
- apt -y install elasticsearch kibana logstash default-jre geoip-database
Systemd Services
- systemctl daemon-reload
- systemctl enable kibana.service
- systemctl enable elasticsearch.service
- systemctl enable logstash.service