Skip to content

Elastic Stack

Overview

The PLOSSYS 5 log, the statistics messages and the audit messages are administrated and visualized by means of Elastic Stack (Elasticsearch and Kibana).

Elastic Stack consists of the following components:

  • Elasticsearch: Database in which the log messages are stored

  • Kibana: User interface for visualizing the log messages; a preconfigured dashboard is contained in the PLOSSYS 5 installation.

  • Filebeat: For reading the PLOSSYS 5 log files and sending them to Elasticsearch

Literature - Kibana

For more information about the configuration of Kibana, refer to the Kibana documentation.

Hint - ELK and Logstash

Before PLOSSYS 5.1.0, ELK with Logstash has been used. Now, ELK has been renamed to Elastic Stack and Logstash is no longer required.

Installation

Elastic Stack is available on the SEAL Systems delivery platform and consists of two parts:

Caution - Disk Space

Before installing the Elastic Stack server part, make sure that enough disk space is available on the installation device. If the amount of free space is less than about 10 % of the device's total capacity, Elasticsearch will lock the created indexes and Kibana will not start properly.

Secure Filebeat

For more information about how to secure Filebeat, refer to Secure Filebeat on Windows or Secure Filebeat on Linux.

Kibana User interface

For opening the Kibana user interface, specify the following URL in the Web browser:

http://<admin_server>:5601

Configure Elastic Stack

If the Elastic Stack will be used intensively for analyzing log messages, you have to configure it before the first use. For more information about how to configure Elastic Stack, for example the housekeeping of the messages, refer to Configure Elastic Stack.

Back to top