SlideShare a Scribd company logo

ELK Elasticsearch Logstash and Kibana Stack for Log Management

Download as PPTX, PDF
E
El Mahdi Benzekri

The document discusses the challenges of managing large amounts of data across multiple systems and the limitations of traditional logging solutions. It presents the ELK stack (Elasticsearch, Logstash, Kibana) as an open-source alternative that facilitates data collection, storage, and visualization. The document highlights the benefits of each component within the stack, including ease of installation, scalability, and real-time analytics capabilities.

Software
1 of 18
Downloaded 24 times
1
2
3
4
5
6
7
8
Most read
9
10
11
12
13
Most read
14
15
Most read
16
17
18
ELK STACK Master the data BY EL MAHDI BENZEKRI
PLAN  Ourproblem  Old solutions limits  Other solutions  ELK Stack overview  Logstash/Elasticsearch/Kibana  Demo
Who are we?
Our problem Lot of users Lots of data Lots of systems Integrated collection of logs
Old solutions limits • Tail & grep impossible with multiple systems • DBs dont scale and its difficult to extract statistics • Syslog : • Only log history • Not flexible : syslog client to syslog server
ELK Elasticsearch Logstash and Kibana Stack for Log Management
Other solutions - Biggest tool - 537 apps - High cost and complexity - Up to ~10000$ SPLUNK - Easy setup - Establish baseline and notify - Sensitive data - Data transmition overhead - Complex pricing strategy SUMO LOGIC (SAAS)
ELK Stack - Open source - Easy install - Mature components - Complexity of three different products - Diffrent machines in production
Logstash Over 200 plugins and all pluggable and mixable Unify and democratize data from different sources and into different destinations Data collection engine
Logstash loves data
Logstash popular plugins - Date - mutate - Grok - Multiline FILTER - File - Stdin - syslog INPUT - Elasticsearch - File - Mongodb - Email - stdout OUTPUT
Elasticsearch • Build on top of Apache Lucene(java) • Developer-Friendly, RESTful API • High Availability • Massively Distributed • Real-Time data and Advanced Analytics(1s from indexing to searching)
Elasticsearch architecture
Elasticsearch REST API
Kibana Real time dashboards Designed to interact with elasticsearch data Full JS and HTML5 analytics and visualization platform
Search query syntax • status:active • title:(quick OR brown) • title:(quick brown) • author:"John Smith« • book.*:(quick brown) • _missing_:title • _exists_:title • qu?ck bro* • name:/joh?n(ath[oa]n)/ • Fuzziness : • quikc~ brwn~ foks~ • quikc~1 • Proximity seach: • "fox quick"~5 • Ranges • date:[2012-01-01 TO 2012- 12-31] • count:{10 TO *] = count:>10 • Boosting • quick^2 fox • Boolean operators • quick brown +fox –news • Avoid • ((quick AND fox) OR (brown AND fox) OR fox) AND NOT news • *ing
Demo architecture TOMCAT Logs Accounts.json REST API File input plugin
01110100 01101000 01100001 01101110 01101011 00100000 01111001 01101111 01110101 :D

More Related Content

PPTX
Elk
Caleb Wang
 
PPTX
ELK Stack
Phuc Nguyen
 
PPTX
Elastic - ELK, Logstash & Kibana
SpringPeople
 
PPTX
Digital Marketing PPT(Presentation) - Digital Marketing Strategies
Web Trainings Academy
 
PPTX
Elastic stack Presentation
Amr Alaa Yassen
 
PPTX
Elastic Stack Introduction
Vikram Shinde
 
PDF
ksqlDB - Stream Processing simplified!
Guido Schmutz
 
PPTX
Robotic Process Automation (RPA)
Mufaddal Nullwala
 
Elk
Caleb Wang
 
ELK Stack
Phuc Nguyen
 
Elastic - ELK, Logstash & Kibana
SpringPeople
 
Digital Marketing PPT(Presentation) - Digital Marketing Strategies
Web Trainings Academy
 
Elastic stack Presentation
Amr Alaa Yassen
 
Elastic Stack Introduction
Vikram Shinde
 
ksqlDB - Stream Processing simplified!
Guido Schmutz
 
Robotic Process Automation (RPA)
Mufaddal Nullwala
 

What's hot (20)

PPTX
Log analysis using elk
Rushika Shah
 
PDF
Log analysis with the elk stack
Vikrant Chauhan
 
PPTX
The Elastic ELK Stack
enterprisesearchmeetup
 
PDF
Introducing ELK
AllBits BVBA (freelancer)
 
PDF
Elasticsearch
Hermeto Romano
 
PPTX
Centralized log-management-with-elastic-stack
Rich Lee
 
PDF
What Is ELK Stack | ELK Tutorial For Beginners | Elasticsearch Kibana | ELK S...
Edureka!
 
PPTX
Introduction to ELK
YuHsuan Chen
 
PPTX
Log management with ELK
Geert Pante
 
PDF
Elk - An introduction
Hossein Shemshadi
 
PDF
ELK introduction
Waldemar Neto
 
PDF
Elasticsearch in Netflix
Danny Yuan
 
PDF
Introduction to elasticsearch
pmanvi
 
PPTX
Caching
Nascenia IT
 
PDF
Introduction to elasticsearch
hypto
 
PDF
Log analysis with elastic stack
Bangladesh Network Operators Group
 
ODP
Deep Dive Into Elasticsearch
Knoldus Inc.
 
PPTX
엘라스틱 서치 세미나
종현 김
 
PPTX
Introduction to ELK
Harshakumar Ummerpillai
 
PDF
Elasticsearch
Shagun Rathore
 
Log analysis using elk
Rushika Shah
 
Log analysis with the elk stack
Vikrant Chauhan
 
The Elastic ELK Stack
enterprisesearchmeetup
 
Introducing ELK
AllBits BVBA (freelancer)
 
Elasticsearch
Hermeto Romano
 
Centralized log-management-with-elastic-stack
Rich Lee
 
What Is ELK Stack | ELK Tutorial For Beginners | Elasticsearch Kibana | ELK S...
Edureka!
 
Introduction to ELK
YuHsuan Chen
 
Log management with ELK
Geert Pante
 
Elk - An introduction
Hossein Shemshadi
 
ELK introduction
Waldemar Neto
 
Elasticsearch in Netflix
Danny Yuan
 
Introduction to elasticsearch
pmanvi
 
Caching
Nascenia IT
 
Introduction to elasticsearch
hypto
 
Log analysis with elastic stack
Bangladesh Network Operators Group
 
Deep Dive Into Elasticsearch
Knoldus Inc.
 
엘라스틱 서치 세미나
종현 김
 
Introduction to ELK
Harshakumar Ummerpillai
 
Elasticsearch
Shagun Rathore
 
Ad

Similar to ELK Elasticsearch Logstash and Kibana Stack for Log Management (20)

PPTX
Centralized Logging System Using ELK Stack
Rohit Sharma
 
PDF
COUG_AAbate_Oracle_Database_12c_New_Features
Alfredo Abate
 
PPTX
Building a Pluggable Analytics Stack with Cassandra (Jim Peregord, Element Co...
DataStax
 
PDF
A Journey from Oracle to PostgreSQL
EDB
 
PDF
An AMIS overview of database 12c
Getting value from IoT, Integration and Data Analytics
 
PPTX
An AMIS Overview of Oracle database 12c (12.1)
Marco Gralike
 
PDF
Centralized Logging Feature in CloudStack using ELK and Grafana - Kiran Chava...
ShapeBlue
 
PPTX
Doing More with Postgres - Yesterday's Vision Becomes Today's Reality
EDB
 
PPTX
Oow2016 review-db-dev-bigdata-BI
Getting value from IoT, Integration and Data Analytics
 
PPTX
Oracle OpenWorld 2016 Review - Focus on Data, BigData, Streaming Data, Machin...
Lucas Jellema
 
PPTX
Oracle OpenWo2014 review part 03 three_paa_s_database
Getting value from IoT, Integration and Data Analytics
 
PDF
The Central View of your Data with Postgres
EDB
 
PDF
The Real Scoop on Migrating from Oracle Databases
EDB
 
PPTX
ELK Ruminating on Logs (Zendcon 2016)
Mathew Beane
 
PPTX
Big Data Analytics on the Cloud Oracle Applications AWS Redshift & Tableau
Sam Palani
 
PPT
Building Scalable Big Data Infrastructure Using Open Source Software Presenta...
ssuserd3a367
 
PDF
PLSSUG - Troubleshoot SQL Server performance problems like a Microsoft Engineer
Marek Maśko
 
PDF
Alfresco monitoring with Nagios and ELK stack
Cesar Capillas
 
PPTX
Ibm datastage online training in hyderabad
GoLogica Technologies
 
PDF
A Glass Half Full: Using Programmable Hardware Accelerators in Analytical Dat...
Facultad de Informática UCM
 
Centralized Logging System Using ELK Stack
Rohit Sharma
 
COUG_AAbate_Oracle_Database_12c_New_Features
Alfredo Abate
 
Building a Pluggable Analytics Stack with Cassandra (Jim Peregord, Element Co...
DataStax
 
A Journey from Oracle to PostgreSQL
EDB
 
An AMIS overview of database 12c
Getting value from IoT, Integration and Data Analytics
 
An AMIS Overview of Oracle database 12c (12.1)
Marco Gralike
 
Centralized Logging Feature in CloudStack using ELK and Grafana - Kiran Chava...
ShapeBlue
 
Doing More with Postgres - Yesterday's Vision Becomes Today's Reality
EDB
 
Oow2016 review-db-dev-bigdata-BI
Getting value from IoT, Integration and Data Analytics
 
Oracle OpenWorld 2016 Review - Focus on Data, BigData, Streaming Data, Machin...
Lucas Jellema
 
Oracle OpenWo2014 review part 03 three_paa_s_database
Getting value from IoT, Integration and Data Analytics
 
The Central View of your Data with Postgres
EDB
 
The Real Scoop on Migrating from Oracle Databases
EDB
 
ELK Ruminating on Logs (Zendcon 2016)
Mathew Beane
 
Big Data Analytics on the Cloud Oracle Applications AWS Redshift & Tableau
Sam Palani
 
Building Scalable Big Data Infrastructure Using Open Source Software Presenta...
ssuserd3a367
 
PLSSUG - Troubleshoot SQL Server performance problems like a Microsoft Engineer
Marek Maśko
 
Alfresco monitoring with Nagios and ELK stack
Cesar Capillas
 
Ibm datastage online training in hyderabad
GoLogica Technologies
 
A Glass Half Full: Using Programmable Hardware Accelerators in Analytical Dat...
Facultad de Informática UCM
 
Ad

Recently uploaded (20)

PDF
Which alternative to Crystal Reports is best for small or large businesses.pdf
Varsha Nayak
 
PPTX
Operating system designcfffgfgggggggvggggggggg
rmskumara09
 
PDF
Internet Downloader Manager (IDM) Crack 6.42 Build 42 Updates Latest 2025
itskinga12
 
PPTX
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
PPTX
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
PDF
Flood Susceptibility Mapping Using Image-Based 2D-CNN Deep Learnin. Overview ...
lawrenceomai2
 
PDF
System and Network Administration Chapter 2
jaramharo
 
PDF
Audit Checklist Design Aligning with ISO, IATF, and Industry Standards — Omne...
rohnjim07
 
PDF
Understanding Forklifts - TECH EHS Solution
TECH EHS Solution
 
PPTX
Introduction to Artificial Intelligence
lohedi9363
 
PDF
AI in Product Development-omnex systems
omnex systems
 
PDF
How to Choose the Right IT Partner for Your Business in Malaysia
Asian Business Services & Technologies
 
PDF
Adobe Illustrator 28.6 Crack My Vision of Vector Design
ghrom2211g
 
PPTX
Agentic AI Use Case- Contract Lifecycle Management (CLM).pptx
mhxyzzp
 
PDF
System and Network Administraation Chapter 3
jaramharo
 
PPTX
ISO 45001 Occupational Health and Safety Management System
EHA Soft Solutions
 
PDF
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 
PDF
2025 Textile ERP Trends: SAP, Odoo & Oracle
Aetos Technologies
 
PPTX
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
PDF
Raksha Bandhan Grocery Pricing Trends in India 2025.pdf
Actowiz Solustions
 
Which alternative to Crystal Reports is best for small or large businesses.pdf
Varsha Nayak
 
Operating system designcfffgfgggggggvggggggggg
rmskumara09
 
Internet Downloader Manager (IDM) Crack 6.42 Build 42 Updates Latest 2025
itskinga12
 
VVF-Customer-Presentation2025-Ver1.9.pptx
blackmambaettijean
 
Oracle E-Business Suite: A Comprehensive Guide for Modern Enterprises
Conacent Consulting
 
Flood Susceptibility Mapping Using Image-Based 2D-CNN Deep Learnin. Overview ...
lawrenceomai2
 
System and Network Administration Chapter 2
jaramharo
 
Audit Checklist Design Aligning with ISO, IATF, and Industry Standards — Omne...
rohnjim07
 
Understanding Forklifts - TECH EHS Solution
TECH EHS Solution
 
Introduction to Artificial Intelligence
lohedi9363
 
AI in Product Development-omnex systems
omnex systems
 
How to Choose the Right IT Partner for Your Business in Malaysia
Asian Business Services & Technologies
 
Adobe Illustrator 28.6 Crack My Vision of Vector Design
ghrom2211g
 
Agentic AI Use Case- Contract Lifecycle Management (CLM).pptx
mhxyzzp
 
System and Network Administraation Chapter 3
jaramharo
 
ISO 45001 Occupational Health and Safety Management System
EHA Soft Solutions
 
Design an Analysis of Algorithms I-SECS-1021-03
DilanEscobar1
 
2025 Textile ERP Trends: SAP, Odoo & Oracle
Aetos Technologies
 
L1 - Introduction to python Backend.pptx
MoizAhmed480282
 
Raksha Bandhan Grocery Pricing Trends in India 2025.pdf
Actowiz Solustions
 

ELK Elasticsearch Logstash and Kibana Stack for Log Management

  • 1. ELK STACK Master the data BY EL MAHDI BENZEKRI
  • 2. PLAN  Ourproblem  Old solutions limits  Other solutions  ELK Stack overview  Logstash/Elasticsearch/Kibana  Demo
  • 4. Our problem Lot of users Lots of data Lots of systems Integrated collection of logs
  • 5. Old solutions limits • Tail & grep impossible with multiple systems • DBs dont scale and its difficult to extract statistics • Syslog : • Only log history • Not flexible : syslog client to syslog server
  • 7. Other solutions - Biggest tool - 537 apps - High cost and complexity - Up to ~10000$ SPLUNK - Easy setup - Establish baseline and notify - Sensitive data - Data transmition overhead - Complex pricing strategy SUMO LOGIC (SAAS)
  • 8. ELK Stack - Open source - Easy install - Mature components - Complexity of three different products - Diffrent machines in production
  • 9. Logstash Over 200 plugins and all pluggable and mixable Unify and democratize data from different sources and into different destinations Data collection engine
  • 11. Logstash popular plugins - Date - mutate - Grok - Multiline FILTER - File - Stdin - syslog INPUT - Elasticsearch - File - Mongodb - Email - stdout OUTPUT
  • 12. Elasticsearch • Build on top of Apache Lucene(java) • Developer-Friendly, RESTful API • High Availability • Massively Distributed • Real-Time data and Advanced Analytics(1s from indexing to searching)
  • 15. Kibana Real time dashboards Designed to interact with elasticsearch data Full JS and HTML5 analytics and visualization platform
  • 16. Search query syntax • status:active • title:(quick OR brown) • title:(quick brown) • author:"John Smith« • book.*:(quick brown) • _missing_:title • _exists_:title • qu?ck bro* • name:/joh?n(ath[oa]n)/ • Fuzziness : • quikc~ brwn~ foks~ • quikc~1 • Proximity seach: • "fox quick"~5 • Ranges • date:[2012-01-01 TO 2012- 12-31] • count:{10 TO *] = count:>10 • Boosting • quick^2 fox • Boolean operators • quick brown +fox –news • Avoid • ((quick AND fox) OR (brown AND fox) OR fox) AND NOT news • *ing
  • 18. 01110100 01101000 01100001 01101110 01101011 00100000 01111001 01101111 01110101 :D