装置Filebeat
官网文档:https://www.elastic.co/guide/...
curl -L -O https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-7.13.3-x86_64.rpmsudo rpm -vi filebeat-7.13.3-x86_64.rpm配置文件门路
vim /etc/filebeat/filebeat.yml filebeat.config.modules: path: ${path.config}/modules.d/*.yml装置Logstash
官网文档:https://www.elastic.co/cn/dow...
vim /etc/yum.repos.d/logstash.repo[logstash-7.x]name=Elastic repository for 7.x packagesbaseurl=https://artifacts.elastic.co/packages/7.x/yumgpgcheck=1gpgkey=https://artifacts.elastic.co/GPG-KEY-elasticsearchenabled=1autorefresh=1type=rpm-md装置
sudo yum install logstashrpm -ql logstash #查看装置目录ln -s /usr/share/logstash/bin/logstash /bin/ #创立软链接测试
logstash -e 'input { stdin { } } output { stdout {} }' #运行胜利后输出任意内容测试