Project for studying EFK + Docker + logback-appender
- Clone project SpringBoot project with logback-appender + Docker
- Building application and docker image:
mvn clean install docker:build - Building docker container:
docker run -d --name springboot-app --label elastic_index=springboot --label send.logs=true -p 8002:8080 augustomarinho/springboot-fluentd-appender
- Calling endpoint for testing:
curl -X GET http://localhost:8002/query/cpf/12345678909 -v - Verify logs as a json format: docker logs springboot-app
- Check output format (must be similar to below example)
{"@timestamp":"2019-04-13T18:38:51.525+00:00","@version":1,"message":"Recendo requisicao para CPF 12345678909","logger_name":"com.am.study.application.controllers.ControllerExample","thread_name":"http-nio-8080-exec-5","level":"INFO","level_value":20000,"CPF":"12345678909"}- Downloading docker-compose file - Credits for docker-compose file: https://alysivji.github.io/elasticsearch-kibana-with-docker-compose.html
- Execute on terminal this command:
sudo sysctl -w vm.max_map_count=262144- more details about it: - Running Elastich Search and Kibana:
docker-compose -f docker-compose.yml up -d --force-recreate - Link Kibana: http://localhost:5601 | Link Elasticsearch: http://localhost:8100
docker pull docker.elastic.co/beats/filebeat:7.0.0- Download file filebeat.yml from https://github.com/augustomarinho/efk/blob/master/devops/filebeat/filebeat.yml
- Copy filebeat.yml to /filebeat directory
- Creating a filebeat directory: mkdir /filebeat
- docker run -d
--name=filebeat
--user=root
--volume="/filebeat/filebeat.yml:/usr/share/filebeat/filebeat.yml:ro"
--volume="/var/lib/docker/containers:/var/lib/docker/containers:ro"
--volume="/var/run/docker.sock:/var/run/docker.sock:ro"
--volume="/var/log:/var/log:ro"
--volume="/filebeat/data:/usr/share/filebeat/data:rw"
docker.elastic.co/beats/filebeat:7.0.0 filebeat -e -strict.perms=false -E beat.name=`hostname -I | cut -d' ' -f1` -E output.elasticsearch.hosts=["`hostname -I | cut -d' ' -f1`:9200"]