Elastic Search

• Is a document-oriented storage
• Is a distributed system
• Refer Here

Logstash

• Reads the inputs, Processes the input and forwards to output
• Some of the logstash configurations in plain english sounds like
  • Read the logs from /var/logs/apache2.log and display on the console
  • Read all the application logs of tomcat and add the following information env: production and forward to elastic search
  • Read all the application logs stored in Database and change the date time format and forward to elastic search

Installation

• Install Java JDK 8. In this case im installing on centos 7

# search on ubuntu
sudo apt-cache search jdk

# search on centos
sudo yum search jdk

 sudo yum install java-1.8.0-openjdk-devel -y

• Proceed the installation by configurting repositories here

Elastic Search, Logstash and kibana configuration

• Main Configuration files are located at
  • elasticsearch: /etc/elasticsearch
  • logstash: /etc/logstash
  • kibana: /etc/kibana