SlideShare a Scribd company logo

Esctl in action elastic user group presentation aug 25 2020

F
FaithWestdorp

The document presents a presentation by Jeff Moore on a CLI tool named esctl, designed for operators to interact with Elasticsearch. It highlights the development challenges, command structure comparisons with kubectl, and examples of extensibility features. Key takeaways include lessons learned from the development process and a call for community feedback and contributions.

Technology
1 of 33
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
1 Jeff Moore 08/25/20, Systems Engineer, Bandwidth esctl in Action or How I Built a CLI tool to Interact with Elasticsearch
2 About this presentation It was fairly difficult deciding between catering towards Devs or Ops. In the end, I decided to side with the Ops side of the house. Based on audience request, I will go into the code in depth - or that can be the topic of a later talk. Feel free to stop me at any point* so we can discuss this utility - however, suggestions are encouraged to be held until the end of the slide deck
3 Contributors Welcome! https://github.com/geoffmore/esctl
4 Hopeful Takeaways - An extensible CLI tool that may impact both yourself and your Org - Lessons learned from over a year of becoming a stronger Golang developer
5 Caveats - This is not complete. - Work has been focused on getting good boilerplate - Not all endpoints have been implemented (templates, indices, etc) - This is not intended to replace the SDKs
6 Why esctl? Devs have a lot of SDKs, but Ops doesn’t appear to have anything
77 We needed an easier way to interact with Elasticsearch as operators of the cluster
8 Intent of esctl 1. Standard endpoints are mocked, with basic config options exposed as flags 2. Extra commands are added based on functions that could be necessary (i.e admin, util)
99 Inspiration
10
11
12 escli and esctl A brief history of two cli tools
13 escli vs esctl Comparison of metrics Metric escli esctl Language Bash Golang Function implementation Bash functions Subcommands # of commands (Aug 2020) 117 44 New functions Easy to add Tedious Extensibility Difficult Easy Refactorability Difficult Not as difficult Barrier to entry Easy Difficult
14 Getting Started Demo Overview of Demo Environment 1 2 3 4 Overview of local cluster init script Overview of Kubernetes manifests Demo of commands and features
15 Homelab Architecture
16
17 On Command Structure - Elasticsearch api structure is very different to that of Kubernetes - Format in v0.1.4 is esctl <endpoint/resource> <function> - Format in Kubectl is kubectl <function> <endpoint/resource>
18 Command Structure Comparison pt. 1 kubectl vs. esctl - Similarities CLI Tool Command Function Resource kubectl kubectl get nodes Get Nodes esctl esctl cat nodes Get Nodes
19 Command Structure Comparison pt. 2 kubectl vs. esctl - Differences CLI Tool Command Function Resource kubectl kubectl get ns Get Namespaces esctl esctl index get Get Indices (Yes, I am comparing namespaces to shards. Feel free to discuss offline)
20 Command Structure Comparison pt. 3 kubectl vs. esctl - the Justification The endpoint behind commands like esctl cat nodes is /_cat/nodes. By mocking functions after their API syntax, there is no mental translation tax needed to move to/from esctl and the REST API
21 Proudly Built on go-elasticsearch SDK Elasticsearch SDK, mostly written by Karel Minarik from Elastic Defines api endpoint options as struct fields Allows client initialization Located at https://github.com/elastic/go-elasticsearch
22
23 esctl Extensibility Examples - Showing Inactive Watchers Problem: Watchers not currently active (read: disabled) need to be listed Solution: - Get all watchers (SearchRequest on .watches index) - Filter to desired activity state - Return output (esutil helper function)
24 esctl Extensibility Examples - Getting Search Metrics Problem: User queries need to be validated before a DeleteByQuery is run Solution: • Take a query • Merge a known aggregation definition to that query • Execute that query (SearchRequest) • Return output (esutil helper function)
25 esctl Extensibility Examples - Removing Empty Indices Problem: Empty indices created by ILM policies cause disk utilization inbalances Solution: - Get a list of all indices (IndicesGetRequest) - Filter to indices containing 0 documents - Delete those indices (IndicesDeleteRequest)
2626 Still Not Sold? esctl api <HTTP verb> endpoint
27 Lessons Learned - Writing a CLI tool isn’t easy - Design should come before writing code to avoid a large number of refactors - Reading documentation thoroughly before using imported code is extremely valuable - This CLI tool continues to be a great learning opportunity for me
28 Overall, building this CLI tool was a painful experience; but, if it was painless, I would be a Java dev instead of a Golang dev Me, just now
29 Future Improvements - Add documentation - Discuss command structure - Need a logo - Codegen?
30 What I Need from YOU! - Use it - File bugs and RFEs
3131 Questions?
3232 https://www.linkedin.com/in/jeff-moore-k8s https://github.com/geoffmore Reach Out!
3333 Thanks!

More Related Content

PPTX
Apache Airflow Introduction
Liangjun Jiang
 
PDF
An intro to Kubernetes operators
J On The Beach
 
PDF
Helm - Application deployment management for Kubernetes
Alexei Ledenev
 
PDF
Angular 2 observables
Geoffrey Filippi
 
PPTX
State in stateless serverless functions
Alex Pshul
 
PPTX
Nova Update - OpenStack Ops Midcycle, Manchester, Feb 2016
John Garbutt
 
PPTX
Kubeflow on google kubernetes engine
Bear Su
 
PPTX
Сергей Калинец "Не SQL-ом единым..."
Fwdays
 
Apache Airflow Introduction
Liangjun Jiang
 
An intro to Kubernetes operators
J On The Beach
 
Helm - Application deployment management for Kubernetes
Alexei Ledenev
 
Angular 2 observables
Geoffrey Filippi
 
State in stateless serverless functions
Alex Pshul
 
Nova Update - OpenStack Ops Midcycle, Manchester, Feb 2016
John Garbutt
 
Kubeflow on google kubernetes engine
Bear Su
 
Сергей Калинец "Не SQL-ом единым..."
Fwdays
 

What's hot (20)

PPTX
What's new in c# 8.0
Moaid Hathot
 
PDF
PuppetConf 2017: Kubernetes in the Cloud w/ Puppet + Google Container Engine-...
Puppet
 
PPTX
Nova Updates - Kilo Edition
OpenStack Foundation
 
PDF
Operator SDK for K8s using Go
CloudOps2005
 
PDF
[Kotlin Serverless 工作坊] 單元 4 - 實作 RSS Aggregator
Shengyou Fan
 
PDF
OpenStack reliability metrics
Ilya Shakhat
 
PPTX
OpenStack Nova Liberty Update
John Garbutt
 
PDF
Intro to os-faults library
Ilya Shakhat
 
PPTX
Игорь Фесенко "Direction of C# as a High-Performance Language"
Fwdays
 
PPTX
Aks: k8s e azure
Alessandro Melchiori
 
PDF
Kube 1.2
Diógenes Rettori
 
PPTX
Nautilus
INRIA-OAK
 
PPTX
What is the OpenStack Platform? By Peter Dens - Kangaroot
Kangaroot
 
PDF
Crunchy containers
Renato Lucena
 
PDF
Handling Kubernetes Resources
Olivier Boukili
 
PDF
Kubeflow control plane
Weiqiang Zhuang
 
PDF
Serverless with Knative - Mete Atamel (Google)
Shift Conference
 
PDF
Dynamic infrastructure for development
Balázs Rostás
 
PDF
From airflow to google cloud composer
Bruce Kuo
 
PDF
Sprint 43 Review
ManageIQ
 
What's new in c# 8.0
Moaid Hathot
 
PuppetConf 2017: Kubernetes in the Cloud w/ Puppet + Google Container Engine-...
Puppet
 
Nova Updates - Kilo Edition
OpenStack Foundation
 
Operator SDK for K8s using Go
CloudOps2005
 
[Kotlin Serverless 工作坊] 單元 4 - 實作 RSS Aggregator
Shengyou Fan
 
OpenStack reliability metrics
Ilya Shakhat
 
OpenStack Nova Liberty Update
John Garbutt
 
Intro to os-faults library
Ilya Shakhat
 
Игорь Фесенко "Direction of C# as a High-Performance Language"
Fwdays
 
Aks: k8s e azure
Alessandro Melchiori
 
Kube 1.2
Diógenes Rettori
 
Nautilus
INRIA-OAK
 
What is the OpenStack Platform? By Peter Dens - Kangaroot
Kangaroot
 
Crunchy containers
Renato Lucena
 
Handling Kubernetes Resources
Olivier Boukili
 
Kubeflow control plane
Weiqiang Zhuang
 
Serverless with Knative - Mete Atamel (Google)
Shift Conference
 
Dynamic infrastructure for development
Balázs Rostás
 
From airflow to google cloud composer
Bruce Kuo
 
Sprint 43 Review
ManageIQ
 
Ad

Similar to Esctl in action elastic user group presentation aug 25 2020 (20)

PDF
ELK-Stack-Essential-Concepts-TheELKStack-LunchandLearn.pdf
cadejaumafiq
 
PDF
Null Bachaav - May 07 Attack Monitoring workshop.
Prajal Kulkarni
 
PPTX
Attack monitoring using ElasticSearch Logstash and Kibana
Prajal Kulkarni
 
PPTX
The ELK Stack - Launch and Learn presentation
saivjadhav2003
 
PPT
How ElasticSearch lives in my DevOps life
琛琳 饶
 
PDF
Elk stack @inbot
Jilles van Gurp
 
PDF
Elasticsearch in Netflix
Danny Yuan
 
PDF
2015 03-16-elk at-bsides
Jeremy Cohoe
 
PDF
Elasticsearch
Shagun Rathore
 
PDF
Logs aggregation and analysis
Divante
 
PPTX
Intro elasticsearch taswarbhatti
Taswar Bhatti
 
PDF
ElasticSearch Introduction
Minh Hoang
 
PDF
Log analysis with the elk stack
Vikrant Chauhan
 
PDF
ELK stack introduction
abenyeung1
 
PDF
Elasticsearch Introduction at BigData meetup
Eric Rodriguez (Hiring in Lex)
 
PDF
Setting ELK in 10 minutes on Windows locally
Sonil Kumar
 
PDF
Elasticsearch, a distributed search engine with real-time analytics
Tiziano Fagni
 
PPT
Elk presentation1#3
uzzal basak
 
PPTX
06 integrate elasticsearch
Erhwen Kuo
 
PPTX
ELK-Stack-Grid-KA-School.pptx
abenyeung1
 
ELK-Stack-Essential-Concepts-TheELKStack-LunchandLearn.pdf
cadejaumafiq
 
Null Bachaav - May 07 Attack Monitoring workshop.
Prajal Kulkarni
 
Attack monitoring using ElasticSearch Logstash and Kibana
Prajal Kulkarni
 
The ELK Stack - Launch and Learn presentation
saivjadhav2003
 
How ElasticSearch lives in my DevOps life
琛琳 饶
 
Elk stack @inbot
Jilles van Gurp
 
Elasticsearch in Netflix
Danny Yuan
 
2015 03-16-elk at-bsides
Jeremy Cohoe
 
Elasticsearch
Shagun Rathore
 
Logs aggregation and analysis
Divante
 
Intro elasticsearch taswarbhatti
Taswar Bhatti
 
ElasticSearch Introduction
Minh Hoang
 
Log analysis with the elk stack
Vikrant Chauhan
 
ELK stack introduction
abenyeung1
 
Elasticsearch Introduction at BigData meetup
Eric Rodriguez (Hiring in Lex)
 
Setting ELK in 10 minutes on Windows locally
Sonil Kumar
 
Elasticsearch, a distributed search engine with real-time analytics
Tiziano Fagni
 
Elk presentation1#3
uzzal basak
 
06 integrate elasticsearch
Erhwen Kuo
 
ELK-Stack-Grid-KA-School.pptx
abenyeung1
 
Ad

More from FaithWestdorp (18)

PDF
Using Elastiknn for exact and approximate nearest neighbor search
FaithWestdorp
 
PDF
Observability from the Home
FaithWestdorp
 
PDF
Elasticsearch Goes to Congress
FaithWestdorp
 
PPTX
Eliminate your zombie technology ray myers - 11-5-2020
FaithWestdorp
 
PDF
Mejorando las busquedas en nuestras aplicaciones web con elasticsearch
FaithWestdorp
 
PDF
Evolving with Elastic: GetSet Learning
FaithWestdorp
 
PPTX
EmPOW: Integrating Attack Behavior Intelligence into Logstash Plugins
FaithWestdorp
 
PDF
Examining OpenData with a Search Index using Elasticsearch
FaithWestdorp
 
PDF
From the trenches: scaling a large log management deployment
FaithWestdorp
 
PDF
Logstash and Maxmind: not just for GEOIP anymore
FaithWestdorp
 
PDF
Elasticsearch's aggregations &amp; esctl in action or how i built a cli tool...
FaithWestdorp
 
PPTX
Searching for NLP: Using Elasticsearch to Create MVPs of NLP-enabled User Ex...
FaithWestdorp
 
PDF
Introduction to machine learning using Elastic
FaithWestdorp
 
PDF
Upgrade your attack model: finding and stopping fileless attacks with MITRE A...
FaithWestdorp
 
PDF
Elastic Observability
FaithWestdorp
 
PDF
Threat hunting with Elastic APM
FaithWestdorp
 
PDF
Guide to Data Visualization in Kibana
FaithWestdorp
 
PDF
Elastic's recommendation on keeping services up and running with real-time vi...
FaithWestdorp
 
Using Elastiknn for exact and approximate nearest neighbor search
FaithWestdorp
 
Observability from the Home
FaithWestdorp
 
Elasticsearch Goes to Congress
FaithWestdorp
 
Eliminate your zombie technology ray myers - 11-5-2020
FaithWestdorp
 
Mejorando las busquedas en nuestras aplicaciones web con elasticsearch
FaithWestdorp
 
Evolving with Elastic: GetSet Learning
FaithWestdorp
 
EmPOW: Integrating Attack Behavior Intelligence into Logstash Plugins
FaithWestdorp
 
Examining OpenData with a Search Index using Elasticsearch
FaithWestdorp
 
From the trenches: scaling a large log management deployment
FaithWestdorp
 
Logstash and Maxmind: not just for GEOIP anymore
FaithWestdorp
 
Elasticsearch's aggregations &amp; esctl in action or how i built a cli tool...
FaithWestdorp
 
Searching for NLP: Using Elasticsearch to Create MVPs of NLP-enabled User Ex...
FaithWestdorp
 
Introduction to machine learning using Elastic
FaithWestdorp
 
Upgrade your attack model: finding and stopping fileless attacks with MITRE A...
FaithWestdorp
 
Elastic Observability
FaithWestdorp
 
Threat hunting with Elastic APM
FaithWestdorp
 
Guide to Data Visualization in Kibana
FaithWestdorp
 
Elastic's recommendation on keeping services up and running with real-time vi...
FaithWestdorp
 

Recently uploaded (20)

PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PPTX
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PDF
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Effective Security Operations Center (SOC) A Modern, Strategic, and Threat-In...
ReZa AdineH
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
Chapter 3 Spatial Domain Image Processing.pdf
Getnet Tigabie Askale -(GM)
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 

Esctl in action elastic user group presentation aug 25 2020

  • 1. 1 Jeff Moore 08/25/20, Systems Engineer, Bandwidth esctl in Action or How I Built a CLI tool to Interact with Elasticsearch
  • 2. 2 About this presentation It was fairly difficult deciding between catering towards Devs or Ops. In the end, I decided to side with the Ops side of the house. Based on audience request, I will go into the code in depth - or that can be the topic of a later talk. Feel free to stop me at any point* so we can discuss this utility - however, suggestions are encouraged to be held until the end of the slide deck
  • 4. 4 Hopeful Takeaways - An extensible CLI tool that may impact both yourself and your Org - Lessons learned from over a year of becoming a stronger Golang developer
  • 5. 5 Caveats - This is not complete. - Work has been focused on getting good boilerplate - Not all endpoints have been implemented (templates, indices, etc) - This is not intended to replace the SDKs
  • 6. 6 Why esctl? Devs have a lot of SDKs, but Ops doesn’t appear to have anything
  • 7. 77 We needed an easier way to interact with Elasticsearch as operators of the cluster
  • 8. 8 Intent of esctl 1. Standard endpoints are mocked, with basic config options exposed as flags 2. Extra commands are added based on functions that could be necessary (i.e admin, util)
  • 10. 10
  • 11. 11
  • 12. 12 escli and esctl A brief history of two cli tools
  • 13. 13 escli vs esctl Comparison of metrics Metric escli esctl Language Bash Golang Function implementation Bash functions Subcommands # of commands (Aug 2020) 117 44 New functions Easy to add Tedious Extensibility Difficult Easy Refactorability Difficult Not as difficult Barrier to entry Easy Difficult
  • 14. 14 Getting Started Demo Overview of Demo Environment 1 2 3 4 Overview of local cluster init script Overview of Kubernetes manifests Demo of commands and features
  • 16. 16
  • 17. 17 On Command Structure - Elasticsearch api structure is very different to that of Kubernetes - Format in v0.1.4 is esctl <endpoint/resource> <function> - Format in Kubectl is kubectl <function> <endpoint/resource>
  • 18. 18 Command Structure Comparison pt. 1 kubectl vs. esctl - Similarities CLI Tool Command Function Resource kubectl kubectl get nodes Get Nodes esctl esctl cat nodes Get Nodes
  • 19. 19 Command Structure Comparison pt. 2 kubectl vs. esctl - Differences CLI Tool Command Function Resource kubectl kubectl get ns Get Namespaces esctl esctl index get Get Indices (Yes, I am comparing namespaces to shards. Feel free to discuss offline)
  • 20. 20 Command Structure Comparison pt. 3 kubectl vs. esctl - the Justification The endpoint behind commands like esctl cat nodes is /_cat/nodes. By mocking functions after their API syntax, there is no mental translation tax needed to move to/from esctl and the REST API
  • 21. 21 Proudly Built on go-elasticsearch SDK Elasticsearch SDK, mostly written by Karel Minarik from Elastic Defines api endpoint options as struct fields Allows client initialization Located at https://github.com/elastic/go-elasticsearch
  • 22. 22
  • 23. 23 esctl Extensibility Examples - Showing Inactive Watchers Problem: Watchers not currently active (read: disabled) need to be listed Solution: - Get all watchers (SearchRequest on .watches index) - Filter to desired activity state - Return output (esutil helper function)
  • 24. 24 esctl Extensibility Examples - Getting Search Metrics Problem: User queries need to be validated before a DeleteByQuery is run Solution: • Take a query • Merge a known aggregation definition to that query • Execute that query (SearchRequest) • Return output (esutil helper function)
  • 25. 25 esctl Extensibility Examples - Removing Empty Indices Problem: Empty indices created by ILM policies cause disk utilization inbalances Solution: - Get a list of all indices (IndicesGetRequest) - Filter to indices containing 0 documents - Delete those indices (IndicesDeleteRequest)
  • 26. 2626 Still Not Sold? esctl api <HTTP verb> endpoint
  • 27. 27 Lessons Learned - Writing a CLI tool isn’t easy - Design should come before writing code to avoid a large number of refactors - Reading documentation thoroughly before using imported code is extremely valuable - This CLI tool continues to be a great learning opportunity for me
  • 28. 28 Overall, building this CLI tool was a painful experience; but, if it was painless, I would be a Java dev instead of a Golang dev Me, just now
  • 29. 29 Future Improvements - Add documentation - Discuss command structure - Need a logo - Codegen?
  • 30. 30 What I Need from YOU! - Use it - File bugs and RFEs