-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathsetup.sh
61 lines (49 loc) · 2.39 KB
/
setup.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
#!/usr/bin/env bash
# Created by: Mark C.
#create directories
mkdir -p /home/vagrant/elasticshare/apache-access
mkdir -p /home/vagrant/elasticshare/els
mkdir -p /home/vagrant/logstash_sincedb
#install elasticsearch
sudo apt-get update
sudo apt-get upgrade -y
sudo apt-get install apt-transport-https -y
sudo apt-get install openjdk-8-jre-headless -y
wget https://artifacts.elastic.co/downloads/elasticsearch/elasticsearch-6.5.1.deb
wget https://artifacts.elastic.co/downloads/elasticsearch/elasticsearch-6.5.1.deb.sha512
shasum -a 512 -c elasticsearch-6.5.1.deb.sha512
sudo dpkg -i elasticsearch-6.5.1.deb
echo "network.host: 0.0.0.0" | sudo tee -a /etc/elasticsearch/elasticsearch.yml
sudo /bin/systemctl daemon-reload
sudo /bin/systemctl enable elasticsearch.service
#install elasticsearch plugin
cd /usr/share/elasticsearch/
sudo bin/elasticsearch-plugin install -b ingest-geoip
sudo bin/elasticsearch-plugin install -b ingest-user-agent
sudo /bin/systemctl stop elasticsearch.service
sudo /bin/systemctl start elasticsearch.service
#install logstash
wget -qO - https://artifacts.elastic.co/GPG-KEY-elasticsearch | sudo apt-key add -
echo "deb https://artifacts.elastic.co/packages/6.x/apt stable main" | sudo tee -a /etc/apt/sources.list.d/elastic-6.x.list
sudo apt-get update && sudo apt-get install logstash
sudo chown logstash:vagrant /home/vagrant/logstash_sincedb
sudo chmod 777 /usr/share/logstash/data
sudo mv /home/vagrant/elasticshare/logstash.conf /etc/logstash/conf.d/
echo "path.config: \"/etc/logstash/conf.d/*\"" | sudo tee -a /etc/logstash/logstash.yml
cd /home/vagrant/elasticshare
curl -XPUT -H "Content-type: application/json" http://127.0.0.1:9200/_template/apache-access_template?pretty -d @apache-access_template.json
curl -XPUT -H "Content-type: application/json" http://127.0.0.1:9200/_template/els_template?pretty -d @els_mapping_template.json
rm /home/vagrant/elasticshare/*_template.json
sudo /bin/systemctl enable logstash.service
sudo /bin/systemctl start logstash.service
#install Kibana
sudo apt-get install kibana -y
echo "server.host: 0.0.0.0" | sudo tee -a /etc/kibana/kibana.yml
sudo mkdir -p /var/log/kibana
sudo chown -R kibana:kibana /var/log/kibana
echo "logging.dest: /var/log/kibana/kibana.log" | sudo tee -a /etc/kibana/kibana.yml
sudo /bin/systemctl daemon-reload
sudo /bin/systemctl enable kibana.service
sudo /bin/systemctl start kibana.service
#install jq
sudo apt-get install jq -y