diff --git a/vendor/github.com/elastic/beats/CHANGELOG.asciidoc b/vendor/github.com/elastic/beats/CHANGELOG.asciidoc index ff15f812..31d6ca6b 100644 --- a/vendor/github.com/elastic/beats/CHANGELOG.asciidoc +++ b/vendor/github.com/elastic/beats/CHANGELOG.asciidoc @@ -8,7 +8,7 @@ // Template, add newest changes here === Beats version HEAD -https://github.com/elastic/beats/compare/v5.3.0...master[Check the HEAD diff] +https://github.com/elastic/beats/compare/v5.3.1...master[Check the HEAD diff] ==== Breaking changes @@ -30,11 +30,14 @@ https://github.com/elastic/beats/compare/v5.3.0...master[Check the HEAD diff] *Affecting all Beats* *Filebeat* +- Properly shut down crawler in case one prospector is misconfigured. {pull}4037[4037] +- Fix panic in JSON decoding code if the input line is "null". {pull}4042[4042] *Heartbeat* *Metricbeat* + *Packetbeat* *Winlogbeat* @@ -84,6 +87,26 @@ https://github.com/elastic/beats/compare/v5.3.0...master[Check the HEAD diff] //////////////////////////////////////////////////////////// +[[release-notes-5.3.1]] +=== Beats version 5.3.1 +https://github.com/elastic/beats/compare/v5.3.0...v5.3.1[View commits] + +==== Bugfixes + +*Affecting all Beats* + +- Fix panic when testing regex-AST to match against date patterns. {issue}3889[3889] + +*Filebeat* + +- Fix modules default file permissions. {pull}3879[3879] +- Allow `-` in Apache access log byte count. {pull}3863[3863] + +*Metricbeat* + +- Avoid errors when some Apache status fields are missing. {issue}3074[3074] + + [[release-notes-5.3.0]] === Beats version 5.3.0 https://github.com/elastic/beats/compare/v5.2.2...v5.3.0[View commits] @@ -111,7 +134,9 @@ https://github.com/elastic/beats/compare/v5.2.2...v5.3.0[View commits] - Add `_id`, `_type`, `_index` and `_score` fields in the generated index pattern. {pull}3282[3282] *Filebeat* - +- Always use absolute path for event and registry. {pull}3328[3328] +- Raise an exception in case there is a syntax error in one of the configuration files available under + filebeat.config_dir. {pull}3573[3573] - Fix empty registry file on machine crash. {issue}3537[3537] *Metricbeat* diff --git a/vendor/github.com/elastic/beats/dev-tools/cmd/import_dashboards/import_dashboards b/vendor/github.com/elastic/beats/dev-tools/cmd/import_dashboards/import_dashboards deleted file mode 100755 index 8ca7fe69..00000000 Binary files a/vendor/github.com/elastic/beats/dev-tools/cmd/import_dashboards/import_dashboards and /dev/null differ diff --git a/vendor/github.com/elastic/beats/dev-tools/package_test.go b/vendor/github.com/elastic/beats/dev-tools/package_test.go index be4848fe..c1c97058 100644 --- a/vendor/github.com/elastic/beats/dev-tools/package_test.go +++ b/vendor/github.com/elastic/beats/dev-tools/package_test.go @@ -21,13 +21,15 @@ import ( ) const ( - expectedConfigMode = os.FileMode(0600) - expectedConfigUID = 0 - expectedConfigGID = 0 + expectedConfigMode = os.FileMode(0600) + expectedManifestMode = os.FileMode(0644) + expectedConfigUID = 0 + expectedConfigGID = 0 ) var ( - configFilePattern = regexp.MustCompile(`.*beat\.yml`) + configFilePattern = regexp.MustCompile(`.*beat\.yml`) + manifestFilePattern = regexp.MustCompile(`manifest.yml`) ) var ( @@ -73,6 +75,9 @@ func checkRPM(t *testing.T, file string) { } checkConfigPermissions(t, p) + checkConfigOwner(t, p) + checkManifestPermissions(t, p) + checkManifestOwner(t, p) } func checkDeb(t *testing.T, file string, buf *bytes.Buffer) { @@ -84,6 +89,8 @@ func checkDeb(t *testing.T, file string, buf *bytes.Buffer) { checkConfigPermissions(t, p) checkConfigOwner(t, p) + checkManifestPermissions(t, p) + checkManifestOwner(t, p) } func checkTar(t *testing.T, file string) { @@ -95,6 +102,7 @@ func checkTar(t *testing.T, file string) { checkConfigPermissions(t, p) checkConfigOwner(t, p) + checkManifestPermissions(t, p) } func checkZip(t *testing.T, file string) { @@ -105,6 +113,7 @@ func checkZip(t *testing.T, file string) { } checkConfigPermissions(t, p) + checkManifestPermissions(t, p) } // Verify that the main configuration file is installed with a 0600 file mode. @@ -115,7 +124,7 @@ func checkConfigPermissions(t *testing.T, p *packageFile) { mode := entry.Mode.Perm() if expectedConfigMode != mode { t.Errorf("file %v has wrong permissions: expected=%v actual=%v", - entry.Mode, expectedConfigMode, mode) + entry.File, expectedConfigMode, mode) } return } @@ -141,6 +150,37 @@ func checkConfigOwner(t *testing.T, p *packageFile) { }) } +// Verify that the modules manifest.yml files are installed with a 0644 file mode. +func checkManifestPermissions(t *testing.T, p *packageFile) { + t.Run(p.Name+" manifest file permissions", func(t *testing.T) { + for _, entry := range p.Contents { + if manifestFilePattern.MatchString(entry.File) { + mode := entry.Mode.Perm() + if expectedManifestMode != mode { + t.Errorf("file %v has wrong permissions: expected=%v actual=%v", + entry.File, expectedManifestMode, mode) + } + } + } + }) +} + +// Verify that the manifest owner is root +func checkManifestOwner(t *testing.T, p *packageFile) { + t.Run(p.Name+" manifest file owner", func(t *testing.T) { + for _, entry := range p.Contents { + if manifestFilePattern.MatchString(entry.File) { + if expectedConfigUID != entry.UID { + t.Errorf("file %v should be owned by user %v, owner=%v", entry.File, expectedConfigGID, entry.UID) + } + if expectedConfigGID != entry.GID { + t.Errorf("file %v should be owned by group %v, group=%v", entry.File, expectedConfigGID, entry.GID) + } + } + } + }) +} + // Helpers type packageFile struct { diff --git a/vendor/github.com/elastic/beats/dev-tools/packer/version.yml b/vendor/github.com/elastic/beats/dev-tools/packer/version.yml index d6a1e88d..187ec9cc 100644 --- a/vendor/github.com/elastic/beats/dev-tools/packer/version.yml +++ b/vendor/github.com/elastic/beats/dev-tools/packer/version.yml @@ -1 +1 @@ -version: "1.1.0" +version: "5.3.2" diff --git a/vendor/github.com/elastic/beats/filebeat/_meta/beat.full.yml b/vendor/github.com/elastic/beats/filebeat/_meta/beat.full.yml index 7b0497a9..d2200107 100644 --- a/vendor/github.com/elastic/beats/filebeat/_meta/beat.full.yml +++ b/vendor/github.com/elastic/beats/filebeat/_meta/beat.full.yml @@ -25,17 +25,24 @@ filebeat.modules: # can be added under this section. #prospector: + # Authorization logs + #auth: + #enabled: true + + # Set custom paths for the log files. If left empty, + # Filebeat will choose the paths depending on your OS. + #var.paths: + + # Prospector configuration (advanced). Any prospector configuration option + # can be added under this section. + #prospector: + #------------------------------- Apache2 Module ------------------------------ #- module: apache2 # Access logs #access: #enabled: true - # Ingest Node pipeline to use. Options are `with_plugins` (default) - # and `no_plugins`. Use `no_plugins` if you don't have the geoip or - # the user agent Node ingest plugins installed. - #var.pipeline: with_plugins - # Set custom paths for the log files. If left empty, # Filebeat will choose the paths depending on your OS. #var.paths: @@ -139,11 +146,6 @@ filebeat.modules: #access: #enabled: true - # Ingest Node pipeline to use. Options are `with_plugins` (default) - # and `no_plugins`. Use `no_plugins` if you don't have the geoip or - # the user agent Node ingest plugins installed. - #var.pipeline: with_plugins - # Set custom paths for the log files. If left empty, # Filebeat will choose the paths depending on your OS. #var.paths: @@ -183,6 +185,9 @@ filebeat.prospectors: #------------------------------ Log prospector -------------------------------- - input_type: log + # Change to true to enable this prospector configuration. + enabled: false + # Paths that should be crawled and fetched. Glob based paths. # To fetch all ".log" files from a specific level of subdirectories # /var/log/*/*.log can be used. @@ -249,6 +254,11 @@ filebeat.prospectors: # This is especially useful for multiline log messages which can get large. #max_bytes: 10485760 + ### Recursive glob configuration + + # Expand "**" patterns into regular glob patterns. + #recursive_glob.enabled: true + ### JSON configuration # Decode JSON options. Enable this if your logs are structured in JSON. @@ -399,3 +409,10 @@ filebeat.prospectors: # How long filebeat waits on shutdown for the publisher to finish. # Default is 0, not waiting. #filebeat.shutdown_timeout: 0 + +# Enable filebeat config reloading +#filebeat.config.prospectors: + #enabled: false + #path: configs/*.yml + #reload.enabled: true + #reload.period: 10s diff --git a/vendor/github.com/elastic/beats/filebeat/_meta/beat.yml b/vendor/github.com/elastic/beats/filebeat/_meta/beat.yml index 2c406940..f90ea651 100644 --- a/vendor/github.com/elastic/beats/filebeat/_meta/beat.yml +++ b/vendor/github.com/elastic/beats/filebeat/_meta/beat.yml @@ -13,22 +13,85 @@ filebeat.modules: #------------------------------- System Module ------------------------------- #- module: system + # Syslog + #syslog: + #enabled: true + + # Set custom paths for the log files. If left empty, + # Filebeat will choose the paths depending on your OS. + #var.paths: + + # Authorization logs + #auth: + #enabled: true + + # Set custom paths for the log files. If left empty, + # Filebeat will choose the paths depending on your OS. + #var.paths: + +#------------------------------- Apache2 Module ------------------------------ +#- module: apache2 + # Access logs + #access: + #enabled: true + + # Set custom paths for the log files. If left empty, + # Filebeat will choose the paths depending on your OS. + #var.paths: + + # Error logs + #error: + #enabled: true + + # Set custom paths for the log files. If left empty, + # Filebeat will choose the paths depending on your OS. + #var.paths: #------------------------------- Auditd Module ------------------------------- #- module: auditd + #log: + #enabled: true + + # Set custom paths for the log files. If left empty, + # Filebeat will choose the paths depending on your OS. + #var.paths: -#------------------------------- Icinga Module ------------------------------- -#- module: icinga #-------------------------------- MySQL Module ------------------------------- #- module: mysql + # Error logs + #error: + #enabled: true + + # Set custom paths for the log files. If left empty, + # Filebeat will choose the paths depending on your OS. + #var.paths: + + # Slow logs + #slowlog: + #enabled: true + + # Set custom paths for the log files. If left empty, + # Filebeat will choose the paths depending on your OS. + #var.paths: #-------------------------------- Nginx Module ------------------------------- #- module: nginx - # Ingest Node pipeline to use. Options are `with_plugins` (default) - # and `no_plugins`. Use `no_plugins` if you don't have the geoip or - # the user agent Node ingest plugins installed. - #access.var.pipeline: with_plugins + # Access logs + #access: + #enabled: true + + # Set custom paths for the log files. If left empty, + # Filebeat will choose the paths depending on your OS. + #var.paths: + + # Error logs + #error: + #enabled: true + + # Set custom paths for the log files. If left empty, + # Filebeat will choose the paths depending on your OS. + #var.paths: # For more available modules and options, please see the filebeat.full.yml sample @@ -44,6 +107,9 @@ filebeat.prospectors: - input_type: log + # Change to true to enable this prospector configuration. + enabled: false + # Paths that should be crawled and fetched. Glob based paths. paths: - /var/log/*.log diff --git a/vendor/github.com/elastic/beats/filebeat/beater/filebeat.go b/vendor/github.com/elastic/beats/filebeat/beater/filebeat.go index 878b830a..21467ace 100644 --- a/vendor/github.com/elastic/beats/filebeat/beater/filebeat.go +++ b/vendor/github.com/elastic/beats/filebeat/beater/filebeat.go @@ -177,6 +177,7 @@ func (fb *Filebeat) Run(b *beat.Beat) error { err = crawler.Start(registrar, config.ProspectorReload) if err != nil { + crawler.Stop() return err } diff --git a/vendor/github.com/elastic/beats/filebeat/crawler/crawler.go b/vendor/github.com/elastic/beats/filebeat/crawler/crawler.go index 9baf86f8..1dfa8aba 100644 --- a/vendor/github.com/elastic/beats/filebeat/crawler/crawler.go +++ b/vendor/github.com/elastic/beats/filebeat/crawler/crawler.go @@ -76,7 +76,7 @@ func (c *Crawler) startProspector(config *common.Config, states []file.State) er err = p.LoadStates(states) if err != nil { - return fmt.Errorf("error loading states for propsector %v: %v", p.ID(), err) + return fmt.Errorf("error loading states for prospector %v: %v", p.ID(), err) } c.prospectors[p.ID()] = p diff --git a/vendor/github.com/elastic/beats/filebeat/docs/configuring-howto.asciidoc b/vendor/github.com/elastic/beats/filebeat/docs/configuring-howto.asciidoc index 5fc2ac74..7e13a3bb 100644 --- a/vendor/github.com/elastic/beats/filebeat/docs/configuring-howto.asciidoc +++ b/vendor/github.com/elastic/beats/filebeat/docs/configuring-howto.asciidoc @@ -11,6 +11,10 @@ To configure {beatname_uc}, you edit the configuration file. For rpm and deb, yo +/etc/{beatname_lc}/{beatname_lc}.yml+. There's also a full example configuration file at +/etc/{beatname_lc}/{beatname_lc}.full.yml+ that shows all non-deprecated options. For mac and win, look in the archive that you extracted. +See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + The following topics describe how to configure Filebeat: * <> diff --git a/vendor/github.com/elastic/beats/filebeat/docs/faq.asciidoc b/vendor/github.com/elastic/beats/filebeat/docs/faq.asciidoc index fbb1bbbd..5878fb54 100644 --- a/vendor/github.com/elastic/beats/filebeat/docs/faq.asciidoc +++ b/vendor/github.com/elastic/beats/filebeat/docs/faq.asciidoc @@ -33,7 +33,7 @@ it's publishing events successfully: [float] [[open-file-handlers]] -== Too many open file handlers? +=== Too many open file handlers? Filebeat keeps the file handler open in case it reaches the end of a file so that it can read new log lines in near real time. If Filebeat is harvesting a large number of files, the number of open files can become an issue. In most environments, the number of files that are actively updated is low. The `close_inactive` configuration option should be set accordingly to close files that are no longer active. diff --git a/vendor/github.com/elastic/beats/filebeat/docs/getting-started.asciidoc b/vendor/github.com/elastic/beats/filebeat/docs/getting-started.asciidoc index 854d3d9f..730e2986 100644 --- a/vendor/github.com/elastic/beats/filebeat/docs/getting-started.asciidoc +++ b/vendor/github.com/elastic/beats/filebeat/docs/getting-started.asciidoc @@ -11,131 +11,20 @@ See {libbeat}/getting-started.html[Getting Started with Beats and the Elastic St After installing the Elastic Stack, read the following topics to learn how to install, configure, and run Filebeat: -* <> * <> * <> * <> * <> * <> * <> +* <> * <> * <> -[[filebeat-modules-quickstart]] -=== Quick Start for Common Log Formats - -beta[] - -Filebeat provides a set of pre-built modules that you can use to rapidly -implement and deploy a log monitoring solution, complete with sample dashboards -and data visualizations, in about 5 minutes. These modules support common log -formats, such as Nginx, Apache2, and MySQL, and can be run by issuing a simple -command. - -This topic shows you how to run the basic modules out of the box without extra -configuration. For detailed documentation and the full list of available -modules, see <>. - -Skip this topic and go to <> if you are using a log file -type that isn't supported by one of the available Filebeat modules. - -==== Prerequisites - -Before running Filebeat with modules enabled, you need to: - -* Install and configure the Elastic stack. See -{libbeat}/getting-started.html[Getting Started with Beats and the Elastic Stack]. - -* Complete the Filebeat installation instructions described in -<>. After installing Filebeat, return to this -quick start page. - -* Install the Ingest Node GeoIP and User Agent plugins, which you can do by -running the following commands in the Elasticsearch home path: -+ -[source,shell] ----------------------------------------------------------------------- -sudo bin/elasticsearch-plugin install ingest-geoip -sudo bin/elasticsearch-plugin install ingest-user-agent ----------------------------------------------------------------------- -+ -You need to restart Elasticsearch after running these commands. - -* Verify that Elasticsearch and Kibana are running and that Elasticsearch is -ready to receive data from Filebeat. - -//TODO: Follow up to find out whether ingest-geoip and ingest-user-agent will be bundled with ES. If so, remove the last prepreq. - -[[running-modules-quickstart]] -==== Running Filebeat with Modules Enabled - -To run one or more Filebeat modules, you issue the following command: - -[source,shell] ----------------------------------------------------------------------- -filebeat -e -modules=MODULES -setup ----------------------------------------------------------------------- - -Where `MODULES` is the name of the module (or a comma-separated list of -modules) that you want to enable. The `-e` flag is optional and sends output -to standard error instead of syslog. The `-setup` flag is a one-time setup step. -For subsequent runs of Filebeat, do not specify this flag. - -For example, to start Filebeat with the `system` module enabled and load the -sample Kibana dashboards, run: - -[source,shell] ----------------------------------------------------------------------- -filebeat -e -modules=system -setup ----------------------------------------------------------------------- - -This command takes care of configuring Filebeat, loading the recommended index -template for writing to Elasticsearch, and deploying the sample dashboards -for visualizing the data in Kibana. - -To start Filebeat with the `system`, `nginx`, and `mysql` modules enabled -and load the sample dashboards, run: - -[source,shell] ----------------------------------------------------------------------- -filebeat -e -modules=system,nginx,mysql -setup ----------------------------------------------------------------------- - -To start Filebeat with the `system` module enabled (it's assumed that -you've already loaded the sample dashboards), run: - -[source,shell] ----------------------------------------------------------------------- -filebeat -e -modules=system ----------------------------------------------------------------------- - -TIP: In a production environment, you'll probably want to use a configuration -file, rather than command-line flags, to specify which modules to run. See the -detailed documentation for more about configuring and running modules. - -These examples assume that the logs you're harvesting are in the location -expected for your OS and that the default behavior of Filebeat is appropriate -for your environment. Each module provides a set of variables that you can set -to fine tune the behavior of Filebeat, including the location where it looks -for log files. See <> for more info. - -[[visualizing-data]] -==== Visualizing the Data in Kibana - -After you've confirmed that Filebeat is sending events to Elasticsearch, launch -the Kibana web interface by pointing your browser to port 5601. For example, -http://127.0.0.1:5601[http://127.0.0.1:5601]. - -Open the dashboard and explore the visualizations for your parsed logs. - -Here's an example of the syslog dashboard: - -image:./images/kibana-system.png[Sylog dashboard] - [[filebeat-installation]] === Step 1: Installing Filebeat -Before running Filebeat, you need to install and configure the Elastic stack. See +Before running Filebeat, you need to install and configure the Elastic stack. See {libbeat}/getting-started.html[Getting Started with Beats and the Elastic Stack]. To download and install Filebeat, use the commands that work with your system @@ -153,33 +42,71 @@ See our https://www.elastic.co/downloads/beats/filebeat[download page] for other [[deb]] *deb:* +ifeval::["{release-state}"=="unreleased"] + +Version {version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ------------------------------------------------ curl -L -O https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-{version}-amd64.deb sudo dpkg -i filebeat-{version}-amd64.deb ------------------------------------------------ +endif::[] + [[rpm]] *rpm:* +ifeval::["{release-state}"=="unreleased"] + +Version {version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ------------------------------------------------ curl -L -O https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-{version}-x86_64.rpm sudo rpm -vi filebeat-{version}-x86_64.rpm ------------------------------------------------ +endif::[] + [[mac]] *mac:* +ifeval::["{release-state}"=="unreleased"] + +Version {version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ------------------------------------------------ curl -L -O https://artifacts.elastic.co/downloads/beats/filebeat/filebeat-{version}-darwin-x86_64.tar.gz tar xzvf filebeat-{version}-darwin-x86_64.tar.gz ------------------------------------------------ +endif::[] + [[win]] *win:* +ifeval::["{release-state}"=="unreleased"] + +Version {version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + . Download the Filebeat Windows zip file from the https://www.elastic.co/downloads/beats/filebeat[downloads page]. @@ -199,26 +126,27 @@ PS C:\Program Files\Filebeat> .\install-service-filebeat.ps1 NOTE: If script execution is disabled on your system, you need to set the execution policy for the current session to allow the script to run. For example: `PowerShell.exe -ExecutionPolicy UnRestricted -File .\install-service-filebeat.ps1`. -If you're using modules to get started with Filebeat, go back to the -<> page. - -Otherwise, continue on to <>. - -Before starting Filebeat, you should look at the configuration options in the configuration -file, for example `C:\Program Files\Filebeat\filebeat.yml` or `/etc/filebeat/filebeat.yml`. For more information about these options, -see <>. +endif::[] [[filebeat-configuration]] === Step 2: Configuring Filebeat TIP: <> provide the fastest getting -started experience for common log formats. See <> to -learn how to get started with modules. +started experience for common log formats. See <> +to learn how to get started with modules. If you use Filebeat modules to get +started, you can skip the content in this section, including the remaining +getting started steps, and go directly to the <> +page. -To configure Filebeat, you edit the configuration file. For rpm and deb, you'll -find the configuration file at `/etc/filebeat/filebeat.yml`. For mac and win, look in -the archive that you just extracted. There’s also a full example configuration file -called `filebeat.full.yml` that shows all non-deprecated options. +To configure Filebeat manually, you edit the configuration file. For rpm and deb, +you'll find the configuration file at `/etc/filebeat/filebeat.yml`. For mac and +win, look in the archive that you just extracted. There’s also a full example +configuration file called `filebeat.full.yml` that shows all non-deprecated +options. + +See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. Here is a sample of the `filebeat` section of the `filebeat.yml` file. Filebeat uses predefined default values for most configuration options. @@ -271,7 +199,10 @@ options specified: +./filebeat -configtest -e+. Make sure your config files are in the path expected by Filebeat (see <>). If you installed from DEB or RPM packages, run +./filebeat.sh -configtest -e+. -See <> for more details about each configuration option. +Before starting Filebeat, you should look at the configuration options in the +configuration file, for example `C:\Program Files\Filebeat\filebeat.yml` or +`/etc/filebeat/filebeat.yml`. For more information about these options, +see <>. [[config-filebeat-logstash]] === Step 3: Configuring Filebeat to Use Logstash @@ -312,8 +243,13 @@ sudo /etc/init.d/filebeat start [source,shell] ---------------------------------------------------------------------- +sudo chown root filebeat.yml <1> sudo ./filebeat -e -c filebeat.yml -d "publish" ---------------------------------------------------------------------- +<1> You'll be running Filebeat as root, so you need to change ownership +of the configuration file (see +{libbeat}/config-file-permissions.html[Config File Ownership and Permissions] +in the _Beats Platform Reference_). *win:* @@ -347,3 +283,4 @@ Filebeat data. image:./images/filebeat-discover-tab.png[] TIP: If you don't see `filebeat-*` in the list of available index patterns, try refreshing the page in your browser. + diff --git a/vendor/github.com/elastic/beats/filebeat/docs/index.asciidoc b/vendor/github.com/elastic/beats/filebeat/docs/index.asciidoc index ab3c69b7..f33c2b30 100644 --- a/vendor/github.com/elastic/beats/filebeat/docs/index.asciidoc +++ b/vendor/github.com/elastic/beats/filebeat/docs/index.asciidoc @@ -7,6 +7,7 @@ include::../../libbeat/docs/version.asciidoc[] :metricbeat: http://www.elastic.co/guide/en/beats/metricbeat/{doc-branch} :filebeat: http://www.elastic.co/guide/en/beats/filebeat/{doc-branch} :winlogbeat: http://www.elastic.co/guide/en/beats/winlogbeat/{doc-branch} +:logstashdoc: https://www.elastic.co/guide/en/logstash/{doc-branch} :elasticsearch: https://www.elastic.co/guide/en/elasticsearch/reference/{doc-branch} :elasticsearch-plugins: https://www.elastic.co/guide/en/elasticsearch/plugins/{doc-branch} :securitydoc: https://www.elastic.co/guide/en/x-pack/5.2 @@ -19,6 +20,8 @@ include::./overview.asciidoc[] include::./getting-started.asciidoc[] +include::./modules-getting-started.asciidoc[] + include::./command-line.asciidoc[] include::../../libbeat/docs/shared-directory-layout.asciidoc[] @@ -43,6 +46,7 @@ include::./multiple-prospectors.asciidoc[] include::./load-balancing.asciidoc[] +:standalone: :allplatforms: include::../../libbeat/docs/yaml.asciidoc[] diff --git a/vendor/github.com/elastic/beats/filebeat/docs/modules-getting-started.asciidoc b/vendor/github.com/elastic/beats/filebeat/docs/modules-getting-started.asciidoc new file mode 100644 index 00000000..1b3c1156 --- /dev/null +++ b/vendor/github.com/elastic/beats/filebeat/docs/modules-getting-started.asciidoc @@ -0,0 +1,119 @@ +[[filebeat-modules-quickstart]] +=== Quick Start for Common Log Formats + +beta[] + +Filebeat provides a set of pre-built modules that you can use to rapidly +implement and deploy a log monitoring solution, complete with sample dashboards +and data visualizations, in about 5 minutes. These modules support common log +formats, such as Nginx, Apache2, and MySQL, and can be run by issuing a simple +command. + +This topic shows you how to run the basic modules out of the box without extra +configuration. For detailed documentation and the full list of available +modules, see <>. + +If you are using a log file type that isn't supported by one of the available +Filebeat modules, you'll need to set up and configure Filebeat manually by +following the numbered steps under <>. + +==== Prerequisites + +Before running Filebeat with modules enabled, you need to: + +* Install and configure the Elastic stack. See +{libbeat}/getting-started.html[Getting Started with Beats and the Elastic Stack]. + +* Complete the Filebeat installation instructions described in +<>. After installing Filebeat, return to this +quick start page. + +* Install the Ingest Node GeoIP and User Agent plugins. These plugins are +required to capture the geographical location and browser information used by +some of the visualizations available in the sample dashboards. You can install +these plugins by running the following commands in the Elasticsearch home path: ++ +[source,shell] +---------------------------------------------------------------------- +sudo bin/elasticsearch-plugin install ingest-geoip +sudo bin/elasticsearch-plugin install ingest-user-agent +---------------------------------------------------------------------- ++ +You need to restart Elasticsearch after running these commands. + +* Verify that Elasticsearch and Kibana are running and that Elasticsearch is +ready to receive data from Filebeat. + +[[running-modules-quickstart]] +==== Running Filebeat with Modules Enabled + +To run one or more Filebeat modules, you issue the following command: + +[source,shell] +---------------------------------------------------------------------- +./filebeat -e -modules=MODULES -setup +---------------------------------------------------------------------- + +Where `MODULES` is the name of the module (or a comma-separated list of +modules) that you want to enable. The `-e` flag is optional and sends output +to standard error instead of syslog. The `-setup` flag is a one-time setup step. +For subsequent runs of Filebeat, do not specify this flag. + +The following example starts Filebeat with the `system` module enabled and +loads the sample Kibana dashboards: + +[source,shell] +---------------------------------------------------------------------- +./filebeat -e -modules=system -setup +---------------------------------------------------------------------- + +This command takes care of configuring Filebeat, loading the recommended index +template for writing to Elasticsearch, and deploying the sample dashboards +for visualizing the data in Kibana. + +NOTE: Depending on how you've installed Filebeat, you might see errors +related to file ownership or permissions when you try to run Filebeat modules. +See {libbeat}/config-file-permissions.html[Config File Ownership and Permissions] +in the _Beats Platform Reference_ if you encounter errors related to file +ownership or permissions. + +include::system-module-note.asciidoc[] + +To start Filebeat with the `system`, `nginx`, and `mysql` modules enabled +and load the sample dashboards, run: + +[source,shell] +---------------------------------------------------------------------- +./filebeat -e -modules=system,nginx,mysql -setup +---------------------------------------------------------------------- + +To start Filebeat with the `system` module enabled (it's assumed that +you've already loaded the sample dashboards), run: + +[source,shell] +---------------------------------------------------------------------- +./filebeat -e -modules=system +---------------------------------------------------------------------- + +TIP: In a production environment, you'll probably want to use a configuration +file, rather than command-line flags, to specify which modules to run. See the +detailed documentation for more about configuring and running modules. + +These examples assume that the logs you're harvesting are in the location +expected for your OS and that the default behavior of Filebeat is appropriate +for your environment. Each module provides a set of variables that you can set +to fine tune the behavior of Filebeat, including the location where it looks +for log files. See <> for more info. + +[[visualizing-data]] +==== Visualizing the Data in Kibana + +After you've confirmed that Filebeat is sending events to Elasticsearch, launch +the Kibana web interface by pointing your browser to port 5601. For example, +http://127.0.0.1:5601[http://127.0.0.1:5601]. + +Open the dashboard and explore the visualizations for your parsed logs. + +Here's an example of the syslog dashboard: + +image:./images/kibana-system.png[Sylog dashboard] \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/filebeat/docs/modules-overview.asciidoc b/vendor/github.com/elastic/beats/filebeat/docs/modules-overview.asciidoc index 0b56b7e1..6e5bbb21 100644 --- a/vendor/github.com/elastic/beats/filebeat/docs/modules-overview.asciidoc +++ b/vendor/github.com/elastic/beats/filebeat/docs/modules-overview.asciidoc @@ -37,13 +37,14 @@ Node. This tutorial assumes you have Elasticsearch and Kibana installed and accessible from Filebeat (see the <> section). It also assumes that the Ingest Node GeoIP and User Agent plugins are -installed, which you can do with the following two commands executed in the -Elasticsearch home path: +installed. These plugins are required to capture the geographical location and +browser information used by some of the visualizations available in the sample +dashboards. You can install these plugins by running the following commands in the Elasticsearch home path: [source,shell] ---------------------------------------------------------------------- -$ sudo bin/elasticsearch-plugin install ingest-geoip -$ sudo bin/elasticsearch-plugin install ingest-user-agent +sudo bin/elasticsearch-plugin install ingest-geoip +sudo bin/elasticsearch-plugin install ingest-user-agent ---------------------------------------------------------------------- You need to restart Elasticsearch after running these commands. @@ -59,7 +60,7 @@ You can start Filebeat with the following command: [source,shell] ---------------------------------------------------------------------- -$ filebeat -e -modules=nginx -setup +./filebeat -e -modules=nginx -setup ---------------------------------------------------------------------- The `-e` flag tells Filebeat to output its logs to standard error, instead of @@ -82,9 +83,11 @@ You can also start multiple modules at once: [source,shell] ---------------------------------------------------------------------- -$ filebeat -e -modules=nginx,mysql,system +./filebeat -e -modules=nginx,mysql,system ---------------------------------------------------------------------- +include::system-module-note.asciidoc[] + While enabling the modules from the CLI file is handy for getting started and for testing, you will probably want to use the configuration file for the production setup. The equivalent of the above in the configuration file is: @@ -92,10 +95,10 @@ production setup. The equivalent of the above in the configuration file is: [source,yaml] ---------------------------------------------------------------------- -modules: -- name: nginx -- name: mysql -- name: syslog +filebeat.modules: +- module: nginx +- module: mysql +- module: system ---------------------------------------------------------------------- Then you can start Filebeat simply with: `./filebeat -e`. @@ -116,17 +119,17 @@ files are in a custom location: [source,shell] ---------------------------------------------------------------------- -$ filebeat -e -modules=nginx -M "nginx.access.var.paths=[/opt/apache2/logs/access.log*]" +./filebeat -e -modules=nginx -M "nginx.access.var.paths=[/var/log/nginx/access.log*]" ---------------------------------------------------------------------- Or via the configuration file: [source,yaml] ---------------------------------------------------------------------- -modules: -- name: nginx +filebeat.modules: +- module: nginx access: - var.paths = ["/opt/apache2/logs/access.log*"] + var.paths = ["/var/log/nginx/access.log*"] ---------------------------------------------------------------------- The Nginx `access` fileset also has a `pipeline` variables which allows @@ -138,7 +141,7 @@ cannot install the plugins, you can use the following: [source,shell] ---------------------------------------------------------------------- -$ filebeat -e -modules=nginx -M "nginx.access.var.pipeline=no_plugins" +./filebeat -e -modules=nginx -M "nginx.access.var.pipeline=no_plugins" ---------------------------------------------------------------------- ==== Advanced settings @@ -150,8 +153,8 @@ example, enabling <> can be done like this: [source,yaml] ---------------------------------------------------------------------- -modules: -- name: nginx +filebeat.modules: +- module: nginx access: prospector: close_eof: true @@ -162,7 +165,7 @@ Or like this: [source,shell] ---------------------------------------------------------------------- -$ filebeat -e -modules=nginx -M "nginx.access.prospector.close_eof=true" +./filebeat -e -modules=nginx -M "nginx.access.prospector.close_eof=true" ---------------------------------------------------------------------- From the CLI, it's possible to change variables or settings for multiple @@ -171,7 +174,7 @@ modules/fileset at once. For example, the following works and will enable [source,shell] ---------------------------------------------------------------------- -$ filebeat -e -modules=nginx -M "nginx.*.prospector.close_eof=true" +./filebeat -e -modules=nginx -M "nginx.*.prospector.close_eof=true" ---------------------------------------------------------------------- The following also works and will enable `close_eof` for all prospectors @@ -179,6 +182,5 @@ created by any of the modules: [source,shell] ---------------------------------------------------------------------- -filebeat -e -modules=nginx,mysql -M "*.*.prospector.close_eof=true" +./filebeat -e -modules=nginx,mysql -M "*.*.prospector.close_eof=true" ---------------------------------------------------------------------- - diff --git a/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration.asciidoc b/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration.asciidoc index 9c92550d..30fd9ee2 100644 --- a/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration.asciidoc +++ b/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration.asciidoc @@ -5,7 +5,10 @@ Before modifying configuration settings, make sure you've completed the <> in the Getting Started. -The {beatname_uc} configuration file, +{beatname_lc}.yml+, uses http://yaml.org/[YAML] for its syntax. +The {beatname_uc} configuration file, +{beatname_lc}.yml+, uses http://yaml.org/[YAML] for its syntax. See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + The configuration options are described in the following sections. After changing configuration settings, you need to restart {beatname_uc} to pick up the changes. @@ -20,6 +23,7 @@ configuration settings, you need to restart {beatname_uc} to pick up the changes * <> * <> * <> +* <> * <> * <> * <> diff --git a/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration/filebeat-options.asciidoc b/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration/filebeat-options.asciidoc index 9e26fb8b..3f05ba61 100644 --- a/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration/filebeat-options.asciidoc +++ b/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration/filebeat-options.asciidoc @@ -1,5 +1,5 @@ [[configuration-filebeat-options]] -=== Filebeat Prospectors Configuration +=== Filebeat Prospectors The `filebeat` section of the +{beatname_lc}.yml+ config file specifies a list of `prospectors` that Filebeat uses to locate and process log files. Each prospector item begins with a dash (-) @@ -294,6 +294,7 @@ If you require log lines to be sent in near real time do not use a very low `sca The default setting is 10s. +[[filebeat-document-type]] ===== document_type The event type to use for published lines read by harvesters. For Elasticsearch @@ -474,7 +475,7 @@ by assigning a higher limit of harvesters. The `enabled` option can be used with each prospector to define if a prospector is enabled or not. By default, enabled is set to true. [[configuration-global-options]] -=== Filebeat Global Configuration +=== Filebeat Global You can specify configuration options in the +{beatname_lc}.yml+ config file to control Filebeat behavior at a global level. diff --git a/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration/reload-configuration.asciidoc b/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration/reload-configuration.asciidoc index 1f6842f5..aa6f7560 100644 --- a/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration/reload-configuration.asciidoc +++ b/vendor/github.com/elastic/beats/filebeat/docs/reference/configuration/reload-configuration.asciidoc @@ -3,11 +3,17 @@ beta[] -Reload configuration allows to dynamically reload prospector configuration files. A glob can be defined which should be watched - for prospector configuration changes. New prospectors will be started / stopped accordingly. This is especially useful in - container environments where 1 container is used to tail logs from services in other containers on the same host. +You can configure Filebeat to dynamically reload prospector configuration files +when there are changes. To do this, you specify a path +(https://golang.org/pkg/path/filepath/#Glob[Glob]) to watch for prospector +configuration changes. When the files found by the Glob change, new prospectors +are started/stopped according to changes in the configuration files. -The configuration in the main filebeat.yml config file looks as following: +This feature is especially useful in container environments where one container +is used to tail logs for services running in other containers on the same host. + +To enable dynamic config reloading, you specify the `path` and `reload` options +in the main `filebeat.yml` config file. For example: [source,yaml] ------------------------------------------------------------------------------ @@ -17,11 +23,16 @@ filebeat.config.prospectors: reload.period: 10s ------------------------------------------------------------------------------ -A path with a glob must be defined on which files should be checked for changes. A period is set on how often -the files are checked for changes. Do not set period below 1s as the modification time of files is often stored in seconds. -Setting it below 1s will cause an unnecessary overhead. +`path`:: A Glob that defines the files to check for changes. +`reload.enabled`:: When set to `true`, enables dynamic config reload. +`reload.period`:: Specifies how often the files are checked for changes. Do not +set the `period` to less than 1s because the modification time of files is often +stored in seconds. Setting the `period` to less than 1s will result in +unnecessary overhead. + +Each file found by the Glob must contain a list of one or more prospector +definitions. For example: -The configuration inside the files which are found by the glob look as following: [source,yaml] ------------------------------------------------------------------------------ - input_type: log @@ -35,7 +46,6 @@ The configuration inside the files which are found by the glob look as following scan_frequency: 5s ------------------------------------------------------------------------------ -Each file directly contains a list of prospectors. Each file can contain one or multiple prospector definitions. - -WARNING: It is critical that two running prospectors DO NOT have overlapping file paths defined. If more then one prospector -harvests the same file at the same time, it can lead to unexpected behaviour. +WARNING: It is critical that two running prospectors DO NOT have overlapping +file paths defined. If more than one prospector harvests the same file at the +same time, it can lead to unexpected behaviour. diff --git a/vendor/github.com/elastic/beats/filebeat/docs/system-module-note.asciidoc b/vendor/github.com/elastic/beats/filebeat/docs/system-module-note.asciidoc new file mode 100644 index 00000000..1774a041 --- /dev/null +++ b/vendor/github.com/elastic/beats/filebeat/docs/system-module-note.asciidoc @@ -0,0 +1,19 @@ +[NOTE] +=============================================================================== +Because Filebeat modules are currently in Beta, the default Filebeat +configuration may interfere with the Filebeat `system` module configuration. If +you plan to run the `system` module, edit the Filebeat configuration file, +`filebeat.yml`, and comment out the following lines: + +[source,yaml] +---------------------------------------------------------------------- +#- input_type: log + #paths: + #- /var/log/*.log +---------------------------------------------------------------------- + +For rpm and deb, you'll find the configuration file at +`/etc/filebeat/filebeat.yml`. For mac and win, look in the archive that you +extracted when you installed Filebeat. + +=============================================================================== \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/filebeat/fields.yml b/vendor/github.com/elastic/beats/filebeat/fields.yml index e8121073..dd6da8af 100644 --- a/vendor/github.com/elastic/beats/filebeat/fields.yml +++ b/vendor/github.com/elastic/beats/filebeat/fields.yml @@ -92,6 +92,35 @@ - name: meta.cloud.region description: > Region in which this host is running. +- key: kubernetes + title: Kubernetes info + description: > + Kubernetes metadata added by the kubernetes processor + fields: + - name: kubernetes.pod.name + type: keyword + description: > + Kubernetes pod name + + - name: kubernetes.namespace + type: keyword + description: > + Kubernetes namespace + + - name: kubernetes.labels + type: object + description: > + Kubernetes labels map + + - name: kubernetes.annotations + type: object + description: > + Kubernetes annotations map + + - name: kubernetes.container.name + type: keyword + description: > + Kubernetes container name - key: log title: Log File Content description: > @@ -149,6 +178,7 @@ title: "Apache2" description: > Apache2 Module + short_config: true fields: - name: apache2 type: group @@ -297,6 +327,7 @@ title: "Auditd" description: > Module for parsing auditd logs. + short_config: true fields: - name: auditd type: group @@ -453,6 +484,7 @@ title: "MySQL" description: > Module for parsing the MySQL log files. + short_config: true fields: - name: mysql type: group @@ -528,6 +560,7 @@ title: "Nginx" description: > Module for parsing the Nginx log files. + short_config: true fields: - name: nginx type: group @@ -672,6 +705,7 @@ title: "System" description: > Module for parsing system log files. + short_config: true fields: - name: system type: group diff --git a/vendor/github.com/elastic/beats/filebeat/filebeat.template-es2x.json b/vendor/github.com/elastic/beats/filebeat/filebeat.template-es2x.json index 7d0617f4..753529d0 100644 --- a/vendor/github.com/elastic/beats/filebeat/filebeat.template-es2x.json +++ b/vendor/github.com/elastic/beats/filebeat/filebeat.template-es2x.json @@ -7,7 +7,7 @@ } }, "_meta": { - "version": "5.3.0" + "version": "5.3.2" }, "date_detection": false, "dynamic_templates": [ diff --git a/vendor/github.com/elastic/beats/filebeat/filebeat.template.json b/vendor/github.com/elastic/beats/filebeat/filebeat.template.json index 63695153..8d416d28 100644 --- a/vendor/github.com/elastic/beats/filebeat/filebeat.template.json +++ b/vendor/github.com/elastic/beats/filebeat/filebeat.template.json @@ -5,7 +5,7 @@ "norms": false }, "_meta": { - "version": "5.3.0" + "version": "5.3.2" }, "date_detection": false, "dynamic_templates": [ diff --git a/vendor/github.com/elastic/beats/filebeat/harvester/reader/json.go b/vendor/github.com/elastic/beats/filebeat/harvester/reader/json.go index 9f8b0a5c..5da01eb3 100644 --- a/vendor/github.com/elastic/beats/filebeat/harvester/reader/json.go +++ b/vendor/github.com/elastic/beats/filebeat/harvester/reader/json.go @@ -30,7 +30,7 @@ func (r *JSON) decodeJSON(text []byte) ([]byte, common.MapStr) { var jsonFields map[string]interface{} err := unmarshal(text, &jsonFields) - if err != nil { + if err != nil || jsonFields == nil { logp.Err("Error decoding JSON: %v", err) if r.cfg.AddErrorKey { jsonFields = common.MapStr{JsonErrorKey: fmt.Sprintf("Error decoding JSON: %v", err)} diff --git a/vendor/github.com/elastic/beats/filebeat/harvester/reader/json_test.go b/vendor/github.com/elastic/beats/filebeat/harvester/reader/json_test.go index 1869a824..bc5d1437 100644 --- a/vendor/github.com/elastic/beats/filebeat/harvester/reader/json_test.go +++ b/vendor/github.com/elastic/beats/filebeat/harvester/reader/json_test.go @@ -116,6 +116,13 @@ func TestDecodeJSON(t *testing.T) { ExpectedText: `{"message": "test", "value": "`, ExpectedMap: nil, }, + { + // in case the JSON is "null", we should just not panic + Text: `null`, + Config: JSONConfig{MessageKey: "value", AddErrorKey: true}, + ExpectedText: `null`, + ExpectedMap: common.MapStr{"json_error": "Error decoding JSON: "}, + }, { // Add key error helps debugging this Text: `{"message": "test", "value": "`, diff --git a/vendor/github.com/elastic/beats/filebeat/module/apache2/access/ingest/default.json b/vendor/github.com/elastic/beats/filebeat/module/apache2/access/ingest/default.json index 8c60260c..b62f4239 100644 --- a/vendor/github.com/elastic/beats/filebeat/module/apache2/access/ingest/default.json +++ b/vendor/github.com/elastic/beats/filebeat/module/apache2/access/ingest/default.json @@ -1,10 +1,10 @@ { - "description": "Pipeline for parsing Nginx access logs. Requires the geoip and user_agent plugins.", + "description": "Pipeline for parsing Apache2 access logs. Requires the geoip and user_agent plugins.", "processors": [{ "grok": { "field": "message", "patterns":[ - "%{IPORHOST:apache2.access.remote_ip} - %{DATA:apache2.access.user_name} \\[%{HTTPDATE:apache2.access.time}\\] \"%{WORD:apache2.access.method} %{DATA:apache2.access.url} HTTP/%{NUMBER:apache2.access.http_version}\" %{NUMBER:apache2.access.response_code} %{NUMBER:apache2.access.body_sent.bytes}( \"%{DATA:apache2.access.referrer}\")?( \"%{DATA:apache2.access.agent}\")?", + "%{IPORHOST:apache2.access.remote_ip} - %{DATA:apache2.access.user_name} \\[%{HTTPDATE:apache2.access.time}\\] \"%{WORD:apache2.access.method} %{DATA:apache2.access.url} HTTP/%{NUMBER:apache2.access.http_version}\" %{NUMBER:apache2.access.response_code} (?:%{NUMBER:apache2.access.body_sent.bytes}|-)( \"%{DATA:apache2.access.referrer}\")?( \"%{DATA:apache2.access.agent}\")?", "%{IPORHOST:apache2.access.remote_ip} - %{DATA:apache2.access.user_name} \\[%{HTTPDATE:apache2.access.time}\\] \"-\" %{NUMBER:apache2.access.response_code} -" ], "ignore_missing": true diff --git a/vendor/github.com/elastic/beats/filebeat/prospector/prospector.go b/vendor/github.com/elastic/beats/filebeat/prospector/prospector.go index 398dcde2..2e3a8420 100644 --- a/vendor/github.com/elastic/beats/filebeat/prospector/prospector.go +++ b/vendor/github.com/elastic/beats/filebeat/prospector/prospector.go @@ -134,7 +134,7 @@ func (p *Prospector) Start() { logp.Info("Prospector channel stopped") return case <-p.beatDone: - logp.Info("Prospector channel stopped") + logp.Info("Prospector channel stopped because beat is stopping.") return case event := <-p.harvesterChan: // No stopping on error, because on error it is expected that beatDone is closed diff --git a/vendor/github.com/elastic/beats/filebeat/prospector/prospector_log.go b/vendor/github.com/elastic/beats/filebeat/prospector/prospector_log.go index e696e30a..fb3c3304 100644 --- a/vendor/github.com/elastic/beats/filebeat/prospector/prospector_log.go +++ b/vendor/github.com/elastic/beats/filebeat/prospector/prospector_log.go @@ -30,6 +30,10 @@ func NewProspectorLog(p *Prospector) (*ProspectorLog, error) { config: p.config, } + if len(p.config.Paths) == 0 { + return nil, fmt.Errorf("each prospector must have at least one path defined") + } + return prospectorer, nil } diff --git a/vendor/github.com/elastic/beats/filebeat/prospector/prospector_test.go b/vendor/github.com/elastic/beats/filebeat/prospector/prospector_test.go index d4e95795..4876f34e 100644 --- a/vendor/github.com/elastic/beats/filebeat/prospector/prospector_test.go +++ b/vendor/github.com/elastic/beats/filebeat/prospector/prospector_test.go @@ -28,6 +28,7 @@ func TestProspectorFileExclude(t *testing.T) { prospector := Prospector{ config: prospectorConfig{ + Paths: []string{"test.log"}, ExcludeFiles: []match.Matcher{match.MustCompile(`\.gz$`)}, }, } diff --git a/vendor/github.com/elastic/beats/filebeat/tests/system/config/filebeat.yml.j2 b/vendor/github.com/elastic/beats/filebeat/tests/system/config/filebeat.yml.j2 index ce19ea2a..b2b5c4c0 100644 --- a/vendor/github.com/elastic/beats/filebeat/tests/system/config/filebeat.yml.j2 +++ b/vendor/github.com/elastic/beats/filebeat/tests/system/config/filebeat.yml.j2 @@ -70,6 +70,9 @@ filebeat.prospectors: max_lines: {{ max_lines|default(500) }} {% endif %} {% endif %} +{% if prospector_raw %} +{{prospector_raw}} +{% endif %} filebeat.spool_size: filebeat.shutdown_timeout: {{ shutdown_timeout|default(0) }} diff --git a/vendor/github.com/elastic/beats/filebeat/tests/system/test_shutdown.py b/vendor/github.com/elastic/beats/filebeat/tests/system/test_shutdown.py index 3ad8dc63..a87ac65b 100644 --- a/vendor/github.com/elastic/beats/filebeat/tests/system/test_shutdown.py +++ b/vendor/github.com/elastic/beats/filebeat/tests/system/test_shutdown.py @@ -146,3 +146,27 @@ class Test(BaseTest): self.copy_files(["logs/nasa-50k.log"], source_dir="../files", target_dir="log") + + def test_stopping_empty_path(self): + """ + Test filebeat stops properly when 1 prospector has an invalid config. + """ + + prospector_raw = """ +- input_type: log + paths: [] +""" + + self.render_config_template( + path=os.path.abspath(self.working_dir) + "/log/*", + prospector_raw=prospector_raw, + ) + filebeat = self.start_beat() + time.sleep(2) + + # Wait until first flush + self.wait_until( + lambda: self.log_contains_count("No paths were defined for prospector") >= 1, + max_timeout=5) + + filebeat.check_wait(exit_code=1) diff --git a/vendor/github.com/elastic/beats/heartbeat/docs/configuring-howto.asciidoc b/vendor/github.com/elastic/beats/heartbeat/docs/configuring-howto.asciidoc index 8ca477ce..cea8be5c 100644 --- a/vendor/github.com/elastic/beats/heartbeat/docs/configuring-howto.asciidoc +++ b/vendor/github.com/elastic/beats/heartbeat/docs/configuring-howto.asciidoc @@ -14,6 +14,10 @@ configuration file at +/etc/heartbeat/heartbeat.full.yml+ that shows all non-deprecated options. For mac and win, look in the archive that you extracted. +See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + The following topics describe how to configure Heartbeat: * <> diff --git a/vendor/github.com/elastic/beats/heartbeat/docs/getting-started.asciidoc b/vendor/github.com/elastic/beats/heartbeat/docs/getting-started.asciidoc index 2a483b0c..08a35e86 100644 --- a/vendor/github.com/elastic/beats/heartbeat/docs/getting-started.asciidoc +++ b/vendor/github.com/elastic/beats/heartbeat/docs/getting-started.asciidoc @@ -7,7 +7,7 @@ related products: * Elasticsearch for storage and indexing the data. * Kibana for the UI. * Logstash (optional) for inserting data into Elasticsearch. - + See {libbeat}/getting-started.html[Getting Started with Beats and the Elastic Stack] for more information. @@ -28,9 +28,9 @@ install, configure, and run Heartbeat: Unlike most Beats, which you install on edge nodes, you typically install Heartbeat as part of monitoring service that runs on a separate machine and possibly even outside of the network where the services that you want to -monitor are running. +monitor are running. -//TODO: Add a separate topic that explores deployment scenarios in more detail (like installing on a sub-network where there's a firewall etc. +//TODO: Add a separate topic that explores deployment scenarios in more detail (like installing on a sub-network where there's a firewall etc. To download and install Heartbeat, use the commands that work with your system (<> for Debian/Ubuntu, <> for Redhat/Centos/Fedora, @@ -47,33 +47,71 @@ See our https://www.elastic.co/downloads/beats/heartbeat[download page] for othe [[deb]] *deb:* +ifeval::["{release-state}"=="unreleased"] + +Version {version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes"] ---------------------------------------------------------------------- curl -L -O {downloads}/heartbeat/heartbeat-{version}-amd64.deb sudo dpkg -i heartbeat-{version}-amd64.deb ---------------------------------------------------------------------- +endif::[] + [[rpm]] *rpm:* +ifeval::["{release-state}"=="unreleased"] + +Version {version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes"] ---------------------------------------------------------------------- curl -L -O {downloads}/heartbeat/heartbeat-{version}-x86_64.rpm sudo rpm -vi heartbeat-{version}-x86_64.rpm ---------------------------------------------------------------------- +endif::[] + [[mac]] *mac:* +ifeval::["{release-state}"=="unreleased"] + +Version {version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes"] ------------------------------------------------ curl -L -O {downloads}/heartbeat/heartbeat-{version}-darwin-x86_64.tar.gz tar xzvf heartbeat-{version}-darwin-x86_64.tar.gz ------------------------------------------------ +endif::[] + [[win]] *win:* +ifeval::["{release-state}"=="unreleased"] + +Version {version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + . Download the Heartbeat Windows zip file from the https://www.elastic.co/downloads/beats/heartbeat[downloads page]. @@ -98,6 +136,8 @@ execution policy for the current session to allow the script to run. For example: +PowerShell.exe -ExecutionPolicy UnRestricted -File .\install-service-heartbeat.ps1+. +endif::[] + Before starting Heartbeat, you should look at the configuration options in the configuration file, for example +C:\Program Files\Heartbeat\heartbeat.yml+ or +/etc/heartbeat/heartbeat.yml+. For more information about these @@ -112,6 +152,10 @@ For mac and win, look in the archive that you just extracted. There’s also a full example configuration file called `heartbeat.full.yml` that shows all non-deprecated options. +See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + Heartbeat provides monitors to check the status of hosts at set intervals. You configure each monitor individually. Heartbeat currently provides monitors for ICMP, TCP, and HTTP (see <> for more about these @@ -121,8 +165,8 @@ monitor: [source,yaml] ---------------------------------------------------------------------- heartbeat.monitors: -- type: icmp - schedule: '*/5 * * * * * *' +- type: icmp + schedule: '*/5 * * * * * *' hosts: ["myhost"] output.elasticsearch: hosts: ["myhost:9200"] @@ -140,7 +184,7 @@ heartbeat.monitors: - type: icmp schedule: '*/5 * * * * * *' <1> hosts: ["myhost"] -- type: tcp +- type: tcp schedule: '@every 5s' <2> hosts: ["myhost:12345"] mode: any <3> @@ -195,7 +239,7 @@ start Heartbeat in the foreground. ["source","sh",subs="attributes"] ---------------------------------------------------------------------- -sudo /etc/init.d/ start +sudo /etc/init.d/heartbeat start ---------------------------------------------------------------------- *rpm:* @@ -209,8 +253,13 @@ sudo /etc/init.d/heartbeat start ["source","sh",subs="attributes"] ---------------------------------------------------------------------- +sudo chown root heartbeat.yml <1> sudo ./heartbeat -e -c heartbeat.yml -d "publish" ---------------------------------------------------------------------- +<1> You'll be running Heartbeat as root, so you need to change ownership +of the configuration file (see +{libbeat}/config-file-permissions.html[Config File Ownership and Permissions] +in the _Beats Platform Reference_). *win:* @@ -224,8 +273,17 @@ By default, Windows log files are stored in +C:\ProgramData\heartbeat\Logs+. Heartbeat is now ready to check the status of your services and send events to your defined output. -//TODO: Add content about sample dashboards when the dashboards are available. +[[heartbeat-sample-dashboards]] +=== Step 5: Loading Sample Kibana Dashboards -//:allplatforms: +To make it easier for you to visualize the status of your services, we have +created sample Heartbeat dashboards. The dashboards are provided as +examples. We recommend that you +http://www.elastic.co/guide/en/kibana/current/dashboard.html[customize] them +to meet your needs. + +image:./images/heartbeat-statistics.png[Heartbeat statistics] + +:allplatforms: +include::../../libbeat/docs/dashboards.asciidoc[] -//include::../../libbeat/docs/dashboards.asciidoc[] diff --git a/vendor/github.com/elastic/beats/heartbeat/docs/images/heartbeat-statistics.png b/vendor/github.com/elastic/beats/heartbeat/docs/images/heartbeat-statistics.png new file mode 100644 index 00000000..07a76e33 Binary files /dev/null and b/vendor/github.com/elastic/beats/heartbeat/docs/images/heartbeat-statistics.png differ diff --git a/vendor/github.com/elastic/beats/heartbeat/docs/images/kibana-created-indexes.png b/vendor/github.com/elastic/beats/heartbeat/docs/images/kibana-created-indexes.png index 17949915..8f6379f5 100644 Binary files a/vendor/github.com/elastic/beats/heartbeat/docs/images/kibana-created-indexes.png and b/vendor/github.com/elastic/beats/heartbeat/docs/images/kibana-created-indexes.png differ diff --git a/vendor/github.com/elastic/beats/heartbeat/docs/images/kibana-navigation-vis.png b/vendor/github.com/elastic/beats/heartbeat/docs/images/kibana-navigation-vis.png index d80f3505..83da8843 100644 Binary files a/vendor/github.com/elastic/beats/heartbeat/docs/images/kibana-navigation-vis.png and b/vendor/github.com/elastic/beats/heartbeat/docs/images/kibana-navigation-vis.png differ diff --git a/vendor/github.com/elastic/beats/heartbeat/docs/index.asciidoc b/vendor/github.com/elastic/beats/heartbeat/docs/index.asciidoc index 8470e621..680217e1 100644 --- a/vendor/github.com/elastic/beats/heartbeat/docs/index.asciidoc +++ b/vendor/github.com/elastic/beats/heartbeat/docs/index.asciidoc @@ -7,6 +7,7 @@ include::../../libbeat/docs/version.asciidoc[] :metricbeat: http://www.elastic.co/guide/en/beats/metricbeat/{doc-branch} :filebeat: http://www.elastic.co/guide/en/beats/filebeat/{doc-branch} :winlogbeat: http://www.elastic.co/guide/en/beats/winlogbeat/{doc-branch} +:logstashdoc: https://www.elastic.co/guide/en/logstash/{doc-branch} :elasticsearch: https://www.elastic.co/guide/en/elasticsearch/reference/{doc-branch} :securitydoc: https://www.elastic.co/guide/en/x-pack/5.2 :downloads: https://artifacts.elastic.co/downloads/beats @@ -42,6 +43,7 @@ include::./configuring-logstash.asciidoc[] include::../../libbeat/docs/shared-env-vars.asciidoc[] +:standalone: :allplatforms: include::../../libbeat/docs/yaml.asciidoc[] diff --git a/vendor/github.com/elastic/beats/heartbeat/docs/reference/configuration.asciidoc b/vendor/github.com/elastic/beats/heartbeat/docs/reference/configuration.asciidoc index e5e258ef..b73f6854 100644 --- a/vendor/github.com/elastic/beats/heartbeat/docs/reference/configuration.asciidoc +++ b/vendor/github.com/elastic/beats/heartbeat/docs/reference/configuration.asciidoc @@ -5,7 +5,10 @@ Before modifying configuration settings, make sure you've completed the <> in the Getting Started. -The Heartbeat configuration file, +heartbeat.yml+, uses http://yaml.org/[YAML] for its syntax. +The Heartbeat configuration file, +heartbeat.yml+, uses http://yaml.org/[YAML] for its syntax. See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + The configuration options are described in the following sections. After changing configuration settings, you need to restart Heartbeat to pick up the changes. @@ -18,6 +21,7 @@ configuration settings, you need to restart Heartbeat to pick up the changes. * <> * <> * <> +* <> * <> * <> * <> diff --git a/vendor/github.com/elastic/beats/heartbeat/docs/reference/configuration/heartbeat-options.asciidoc b/vendor/github.com/elastic/beats/heartbeat/docs/reference/configuration/heartbeat-options.asciidoc index a4144a02..f283e6dc 100644 --- a/vendor/github.com/elastic/beats/heartbeat/docs/reference/configuration/heartbeat-options.asciidoc +++ b/vendor/github.com/elastic/beats/heartbeat/docs/reference/configuration/heartbeat-options.asciidoc @@ -1,5 +1,5 @@ [[configuration-heartbeat-options]] -=== Heartbeat Configuration +=== Heartbeat The `heartbeat` section of the +heartbeat.yml+ config file specifies the list of `monitors` that Heartbeat uses to check your remote hosts to diff --git a/vendor/github.com/elastic/beats/heartbeat/fields.yml b/vendor/github.com/elastic/beats/heartbeat/fields.yml deleted file mode 100644 index aecb277e..00000000 --- a/vendor/github.com/elastic/beats/heartbeat/fields.yml +++ /dev/null @@ -1,240 +0,0 @@ - -- key: beat - title: Beat - description: > - Contains common beat fields available in all event types. - fields: - - - name: beat.name - description: > - The name of the Beat sending the log messages. If the Beat name is - set in the configuration file, then that value is used. If it is not - set, the hostname is used. To set the Beat name, use the `name` - option in the configuration file. - - name: beat.hostname - description: > - The hostname as returned by the operating system on which the Beat is - running. - - name: beat.timezone - description: > - The timezone as returned by the operating system on which the Beat is - running. - - name: beat.version - description: > - The version of the beat that generated this event. - - - name: "@timestamp" - type: date - required: true - format: date - example: August 26th 2016, 12:35:53.332 - description: > - The timestamp when the event log record was generated. - - - name: tags - description: > - Arbitrary tags that can be set per Beat and per transaction - type. - - - name: fields - type: object - object_type: keyword - description: > - Contains user configurable fields. - - - name: error - type: group - description: > - Error fields containing additional info in case of errors. - fields: - - name: message - type: text - description: > - Error message. - - name: code - type: long - description: > - Error code. - - name: type - type: keyword - description: > - Error type. -- key: cloud - title: Cloud Provider Metadata - description: > - Metadata from cloud providers added by the add_cloud_metadata processor. - fields: - - - name: meta.cloud.provider - example: ec2 - description: > - Name of the cloud provider. Possible values are ec2, gce, or digitalocean. - - - name: meta.cloud.instance_id - description: > - Instance ID of the host machine. - - - name: meta.cloud.machine_type - example: t2.medium - description: > - Machine type of the host machine. - - - name: meta.cloud.availability_zone - example: us-east-1c - description: > - Availability zone in which this host is running. - - - name: meta.cloud.project_id - example: project-x - description: > - Name of the project in Google Cloud. - - - name: meta.cloud.region - description: > - Region in which this host is running. -- key: common - title: "Common monitoring fields" - description: - fields: - - name: type - type: keyword - required: true - description: > - The monitor type. - - - name: monitor - type: keyword - description: > - Monitor job name. - - - name: scheme - type: keyword - description: > - Address url scheme. For example `tcp`, `ssl`, `http`, and `https`. - - - name: host - type: keyword - description: > - Hostname of service being monitored. Can be missing, if service is - monitored by IP. - - - name: port - type: integer - description: > - Service port number. - - - name: url - type: text - description: > - Service url used by monitor. - - - name: ip - type: keyword - description: > - IP of service being monitored. If service is monitored by hostname, - the `ip` field contains the resolved ip address for the current host. - - - name: duration - type: group - description: total monitoring test duration - fields: - - name: us - type: long - description: Duration in microseconds - - - name: resolve_rtt - type: group - description: Duration required to resolve an IP from hostname. - fields: - - name: us - type: long - description: Duration in microseconds - - - name: icmp_rtt - type: group - description: ICMP Echo Request and Reply round trip time - fields: - - name: us - type: long - description: Duration in microseconds - - - name: tcp_connect_rtt - type: group - description: > - Duration required to establish a TCP connection based on already - available IP address. - fields: - - name: us - type: long - description: Duration in microseconds - - - name: socks5_connect_rtt - type: group - description: > - Time required to establish a connection via SOCKS5 to endpoint based on available - connection to SOCKS5 proxy. - fields: - - name: us - type: long - description: Duration in microseconds - - - name: tls_handshake_rtt - type: group - description: > - Time required to finish TLS handshake based on already available network - connection. - fields: - - name: us - type: long - description: Duration in microseconds - - - name: http_rtt - type: group - description: > - Time required between sending the HTTP request and first by from HTTP - response being read. Duration based on already available network connection. - fields: - - name: us - type: long - description: Duration in microseconds - - - name: validate_rtt - type: group - description: > - Time required for validating the connection if connection checks are configured. - fields: - - name: us - type: long - description: Duration in microseconds - - - name: response - type: group - description: > - Service response parameters. - - fields: - - name: status - type: integer - description: > - Response status code. - - - name: up - required: true - type: boolean - description: > - Boolean indicator if monitor could validate the service to be available. - - - name: error - type: group - description: > - Reason monitor flagging a service as down. - fields: - - name: type - type: keyword - description: > - Failure type. For example `io` or `validate`. - - - name: message - type: text - description: > - Failure description. diff --git a/vendor/github.com/elastic/beats/heartbeat/heartbeat.template-es2x.json b/vendor/github.com/elastic/beats/heartbeat/heartbeat.template-es2x.json index acd48380..7de56893 100644 --- a/vendor/github.com/elastic/beats/heartbeat/heartbeat.template-es2x.json +++ b/vendor/github.com/elastic/beats/heartbeat/heartbeat.template-es2x.json @@ -7,7 +7,7 @@ } }, "_meta": { - "version": "5.3.0" + "version": "5.3.2" }, "date_detection": false, "dynamic_templates": [ diff --git a/vendor/github.com/elastic/beats/heartbeat/heartbeat.template.json b/vendor/github.com/elastic/beats/heartbeat/heartbeat.template.json index 329bb697..84b5fe5e 100644 --- a/vendor/github.com/elastic/beats/heartbeat/heartbeat.template.json +++ b/vendor/github.com/elastic/beats/heartbeat/heartbeat.template.json @@ -5,7 +5,7 @@ "norms": false }, "_meta": { - "version": "5.3.0" + "version": "5.3.2" }, "date_detection": false, "dynamic_templates": [ diff --git a/vendor/github.com/elastic/beats/libbeat/beat/version.go b/vendor/github.com/elastic/beats/libbeat/beat/version.go index 8444cbaa..b2af4d88 100644 --- a/vendor/github.com/elastic/beats/libbeat/beat/version.go +++ b/vendor/github.com/elastic/beats/libbeat/beat/version.go @@ -1,3 +1,3 @@ package beat -const defaultBeatVersion = "5.3.0" +const defaultBeatVersion = "5.3.2" diff --git a/vendor/github.com/elastic/beats/libbeat/common/match/cmp.go b/vendor/github.com/elastic/beats/libbeat/common/match/cmp.go index cabf800b..aaef2465 100644 --- a/vendor/github.com/elastic/beats/libbeat/common/match/cmp.go +++ b/vendor/github.com/elastic/beats/libbeat/common/match/cmp.go @@ -90,7 +90,7 @@ func isPrefixNumDate(r *syntax.Regexp) bool { i++ } - // check digits + // check starts with digits `\d{n}` or `[0-9]{n}` if !isMultiDigits(r.Sub[i]) { return false } @@ -103,6 +103,11 @@ func isPrefixNumDate(r *syntax.Regexp) bool { } i++ + // regex has 'OpLiteral' suffix, without any more digits/patterns following + if i == len(r.Sub) { + return true + } + // check digits if !isMultiDigits(r.Sub[i]) { return false diff --git a/vendor/github.com/elastic/beats/libbeat/common/match/compile.go b/vendor/github.com/elastic/beats/libbeat/common/match/compile.go index dc0b663b..2cf633cc 100644 --- a/vendor/github.com/elastic/beats/libbeat/common/match/compile.go +++ b/vendor/github.com/elastic/beats/libbeat/common/match/compile.go @@ -88,14 +88,21 @@ func compilePrefixNumDate(r *syntax.Regexp) (stringMatcher, error) { i++ for i < len(r.Sub) { - seps = append(seps, []byte(string(r.Sub[i].Rune))) + lit := []byte(string(r.Sub[i].Rune)) i++ + // capture literal suffix + if i == len(r.Sub) { + m.suffix = lit + break + } + + seps = append(seps, lit) digits = append(digits, digitLen(r.Sub[i])) i++ } - minLen := len(m.prefix) + minLen := len(m.prefix) + len(m.suffix) for _, d := range digits { minLen += d } diff --git a/vendor/github.com/elastic/beats/libbeat/common/match/matcher_bench_test.go b/vendor/github.com/elastic/beats/libbeat/common/match/matcher_bench_test.go index 41f3d408..4b2f5d6e 100644 --- a/vendor/github.com/elastic/beats/libbeat/common/match/matcher_bench_test.go +++ b/vendor/github.com/elastic/beats/libbeat/common/match/matcher_bench_test.go @@ -89,7 +89,9 @@ func BenchmarkPatterns(b *testing.B) { {"startsWith ' '", `^ `}, {"startsWithDate", `^\d{2}-\d{2}-\d{4}`}, {"startsWithDate2", `^\d{4}-\d{2}-\d{2}`}, - {"startsWithDate3", `^20\d{2}-\d{2}-\d{2}`}, + {"startsWithDate3", `^\d\d\d\d-\d\d-\d\d`}, + {"startsWithDate4", `^20\d{2}-\d{2}-\d{2}`}, + {"startsWithDateAndSpace", `^\d{4}-\d{2}-\d{2} `}, {"startsWithLevel", `^(DEBUG|INFO|WARN|ERR|CRIT)`}, {"hasLevel", `(DEBUG|INFO|WARN|ERR|CRIT)`}, {"contains 'PATTERN'", `PATTERN`}, diff --git a/vendor/github.com/elastic/beats/libbeat/common/match/matcher_test.go b/vendor/github.com/elastic/beats/libbeat/common/match/matcher_test.go index 9e15b1ec..082c3061 100644 --- a/vendor/github.com/elastic/beats/libbeat/common/match/matcher_test.go +++ b/vendor/github.com/elastic/beats/libbeat/common/match/matcher_test.go @@ -120,6 +120,18 @@ func TestMatchers(t *testing.T) { "This should not match", }, }, + { + `^\d\d\d\d-\d\d-\d\d`, + typeOf((*prefixNumDate)(nil)), + []string{ + "2017-01-02 should match", + "2017-01-03 should also match", + }, + []string{ + "- 2017-01-02 should not match", + "fail", + }, + }, { `^\d{4}-\d{2}-\d{2}`, typeOf((*prefixNumDate)(nil)), @@ -132,6 +144,30 @@ func TestMatchers(t *testing.T) { "fail", }, }, + { + `^(\d{2}){2}-\d{2}-\d{2}`, + typeOf((*prefixNumDate)(nil)), + []string{ + "2017-01-02 should match", + "2017-01-03 should also match", + }, + []string{ + "- 2017-01-02 should not match", + "fail", + }, + }, + { + `^\d{4}-\d{2}-\d{2} - `, + typeOf((*prefixNumDate)(nil)), + []string{ + "2017-01-02 - should match", + "2017-01-03 - should also match", + }, + []string{ + "- 2017-01-02 should not match", + "fail", + }, + }, { `^20\d{2}-\d{2}-\d{2}`, typeOf((*prefixNumDate)(nil)), diff --git a/vendor/github.com/elastic/beats/libbeat/common/match/matchers.go b/vendor/github.com/elastic/beats/libbeat/common/match/matchers.go index 7ec6813b..c62dd85e 100644 --- a/vendor/github.com/elastic/beats/libbeat/common/match/matchers.go +++ b/vendor/github.com/elastic/beats/libbeat/common/match/matchers.go @@ -36,9 +36,10 @@ type altPrefixMatcher struct { type prefixNumDate struct { minLen int - digits []int prefix []byte + digits []int seps [][]byte + suffix []byte } type emptyStringMatcher struct{} @@ -182,6 +183,12 @@ func (m *prefixNumDate) Match(in []byte) bool { } } + if sfx := m.suffix; len(sfx) > 0 { + if !bytes.HasPrefix(in[pos:], sfx) { + return false + } + } + return true } diff --git a/vendor/github.com/elastic/beats/libbeat/common/match/optimize.go b/vendor/github.com/elastic/beats/libbeat/common/match/optimize.go index cb485c63..62762028 100644 --- a/vendor/github.com/elastic/beats/libbeat/common/match/optimize.go +++ b/vendor/github.com/elastic/beats/libbeat/common/match/optimize.go @@ -11,6 +11,7 @@ var transformations = []trans{ trimRight, unconcat, concatRepetition, + flattenRepetition, } // optimize runs minimal regular expression optimizations @@ -112,8 +113,8 @@ func unconcat(r *syntax.Regexp) (bool, *syntax.Regexp) { return false, r } -// concatRepetition concatenates multiple repeated sub-patterns into -// a repetition of exactly N. +// concatRepetition concatenates 2 consecutive repeated sub-patterns into a +// repetition of length 2. func concatRepetition(r *syntax.Regexp) (bool, *syntax.Regexp) { if r.Op != syntax.OpConcat { @@ -204,3 +205,54 @@ func concatRepetition(r *syntax.Regexp) (bool, *syntax.Regexp) { } return changed, r } + +// flattenRepetition flattens nested repetitions +func flattenRepetition(r *syntax.Regexp) (bool, *syntax.Regexp) { + if r.Op != syntax.OpConcat { + // don't iterate sub-expressions if top-level is no OpConcat + return false, r + } + + sub := r.Sub + inRepetition := false + if isConcatRepetition(r) { + sub = sub[:1] + inRepetition = true + + // create flattened regex repetition mulitplying count + // if nexted expression is also a repetition + if s := sub[0]; isConcatRepetition(s) { + count := len(s.Sub) * len(r.Sub) + return true, &syntax.Regexp{ + Op: syntax.OpRepeat, + Sub: s.Sub[:1], + Min: count, + Max: count, + Flags: r.Flags | s.Flags, + } + } + } + + // recursively check if we can flatten sub-expressions + changed := false + for i, s := range sub { + upd, tmp := flattenRepetition(s) + changed = changed || upd + sub[i] = tmp + } + + if !changed { + return false, r + } + + // fix up top-level repetition with modified one + tmp := *r + if inRepetition { + for i := range r.Sub { + tmp.Sub[i] = sub[0] + } + } else { + tmp.Sub = sub + } + return changed, &tmp +} diff --git a/vendor/github.com/elastic/beats/libbeat/docs/communitybeats.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/communitybeats.asciidoc index 9f9a8977..ee0e930e 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/communitybeats.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/communitybeats.asciidoc @@ -28,9 +28,11 @@ https://github.com/YaSuenag/hsbeat[hsbeat]:: Reads all performance counters in J https://github.com/christiangalsterer/httpbeat[httpbeat]:: Polls multiple HTTP(S) endpoints and sends the data to Logstash or Elasticsearch. Supports all HTTP methods and proxies. https://github.com/jasperla/hwsensorsbeat[hwsensorsbeat]:: Reads sensors information from OpenBSD. +https://github.com/icinga/icingabeat[icingabeat]:: Icingabeat ships events and states from Icinga 2 to Elasticsearch or Logstash. https://github.com/devopsmakers/iobeat[iobeat]:: Reads IO stats from /proc/diskstats on Linux. https://github.com/radoondas/jmxproxybeat[jmxproxybeat]:: Reads Tomcat JMX metrics exposed over 'JMX Proxy Servlet' to HTTP. https://github.com/mheese/journalbeat[journalbeat]:: Used for log shipping from systemd/journald based Linux systems. +https://github.com/dearcode/kafkabeat[kafkabeat]:: read data from kafka with Consumer-groups. https://github.com/eskibars/lmsensorsbeat[lmsensorsbeat]:: Collects data from lm-sensors (such as CPU temperatures, fan speeds, and voltages from i2c and smbus). https://github.com/consulthys/logstashbeat[logstashbeat]:: Collects data from Logstash monitoring API (v5 onwards) and indexes them in Elasticsearch. https://github.com/yedamao/mcqbeat[mcqbeat]:: Reads the status of queues from memcacheq. @@ -39,6 +41,7 @@ https://github.com/adibendahan/mysqlbeat[mysqlbeat]:: Run any query on MySQL and https://github.com/PhaedrusTheGreek/nagioscheckbeat[nagioscheckbeat]:: For Nagios checks and performance data. https://github.com/mrkschan/nginxbeat[nginxbeat]:: Reads status from Nginx. https://github.com/2Fast2BCn/nginxupstreambeat[nginxupstreambeat]:: Reads upstream status from nginx upstream module. +https://github.com/deepujain/nvidiagpubeat/[nvidiagpubeat]:: Uses nvidia-smi to grab metrics of NVIDIA GPUs. https://github.com/aristanetworks/openconfigbeat[openconfigbeat]:: Streams data from http://openconfig.net[OpenConfig]-enabled network devices https://github.com/joehillen/packagebeat[packagebeat]:: Collects information about system packages from package managers. @@ -57,7 +60,7 @@ https://github.com/hartfordfive/udplogbeat[udplogbeat]:: Accept events via local https://github.com/cleesmith/unifiedbeat[unifiedbeat]:: Reads records from Unified2 binary files generated by network intrusion detection software and indexes the records in Elasticsearch. https://github.com/mrkschan/uwsgibeat[uwsgibeat]:: Reads stats from uWSGI. -https://github.com/eskibars/wmibeat[wmibeat]:: Uses WMI to grab your favorite, configurable Windows metrics. +https://github.com/eskibars/wmibeat[wmibeat]:: Uses WMI to grab your favorite, configurable Windows metrics. Have you created a Beat that's not listed? If so, add the name and description of your Beat to the source document for diff --git a/vendor/github.com/elastic/beats/libbeat/docs/config-file-format.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/config-file-format.asciidoc index 71c95d38..9a08649d 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/config-file-format.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/config-file-format.asciidoc @@ -199,8 +199,8 @@ field references `[fieldname]`. Optional default values can be specified in case field name is missing from the event. You can also format time stored in the -`@timestamp` field using the `+FORMAT` syntax where FORMAT is a valid (time -format)[https://godoc.org/github.com/elastic/beats/libbeat/common/dtfmt]. +`@timestamp` field using the `+FORMAT` syntax where FORMAT is a valid https://godoc.org/github.com/elastic/beats/libbeat/common/dtfmt[time +format]. ["source","yaml",subs="attributes"] ------------------------------------------------------------------------------ @@ -375,44 +375,5 @@ individual settings can be overwritten using `-E =`. [[config-file-format-tips]] === YAML Tips and Gotchas -When you edit the configuration file, there are a few things that you should know. - -[float] -==== Use Spaces for Indentation - -Indentation is meaningful in YAML. Make sure that you use spaces, rather than -tab characters, to indent sections. - -In the default configuration files and in all the examples in the documentation, -we use 2 spaces per indentation level. We recommend you do the same. - -[float] -==== Look at the Default Config File for Structure - -The best way to understand where to define a configuration option is by looking -at the provided sample configuration files. The configuration files contain most -of the default configurations that are available per beat. To change a setting, -simply uncomment the line and change the values. - -[float] -==== Test Your Config File - -You can test your configuration file to verify that the structure is valid. -Simply change to the directory where the binary is installed, and run -your Beat in the foreground with the `-configtest` flag specified. For example: - -["source","yaml",subs="attributes,callouts"] ----------------------------------------------------------------------- -filebeat -c filebeat.yml -configtest ----------------------------------------------------------------------- - -You'll see a message if an error in the configuration file is found. - -[float] -==== Wrap Regular Expressions in Single Quotation Marks - -If you need to specify a regular expression in a YAML file, it's a good idea to -wrap the regular expression in single quotation marks to work around YAML's -tricky rules for string escaping. - -For more information about YAML, see http://yaml.org/. +:allplatforms: +include::yaml.asciidoc[] diff --git a/vendor/github.com/elastic/beats/libbeat/docs/dashboards.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/dashboards.asciidoc index 9e35cbb4..88427870 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/dashboards.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/dashboards.asciidoc @@ -101,7 +101,7 @@ pattern is selected to see {beatname_uc} data. image:./images/kibana-created-indexes.png[Discover tab with index selected] -To open the loaded dashboards, go to the *Dashboard* page and click *Open*. -Select the dashboard that you want to open. +To open the loaded dashboards, go to the *Dashboard* page and select the +dashboard that you want to open. image:./images/kibana-navigation-vis.png[Navigation widget in Kibana] diff --git a/vendor/github.com/elastic/beats/libbeat/docs/dashboardsconfig.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/dashboardsconfig.asciidoc index b8946830..7d4dfee9 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/dashboardsconfig.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/dashboardsconfig.asciidoc @@ -11,22 +11,24 @@ ////////////////////////////////////////////////////////////////////////// [[configuration-dashboards]] -=== Dashboards Configuration +=== Dashboards beta[] The `dashboards` section of the +{beatname_lc}.yml+ config file contains options -for the automatic loading of the sample Beats dashboards. The loading of the -dashboards is disabled by default, but can be enabled either from the configuration +for automatically loading the sample Beats dashboards. Automatic dashboard +loading is disabled by default, but can be enabled either from the configuration file or by using the `-setup` CLI flag. If dashboard loading is enabled, {beatname_uc} attempts to configure Kibana by writing directly in the Elasticsearch index for the Kibana configuration (by -default, `.kibana`). To connect to Elasticsearch, it uses the settings defined -in the Eleasticsearch output. If the Elasticsearch output is not configured or -not enabled, {beatname_uc} will stop with an error. Loading the dashboards is -only attempted at the Beat start, if Elasticsearch is not available when the -Beat starts, {beatname_uc} will stop with an error. +default, `.kibana`). To connect to Elasticsearch, {beatname_uc} uses the +settings defined in the Elasticsearch output. If the Elasticsearch output is +not configured or not enabled, {beatname_uc} will stop with an error. Dashboard +loading is only attempted at Beat startup. If Elasticsearch is not available when +the Beat starts, {beatname_uc} will stop with an error. + +Here is an example configuration: [source,yaml] ------------------------------------------------------------------------------ @@ -40,48 +42,64 @@ You can specify the following options in the `dashboards` section of the ===== enabled -If enabled, load the sample Kibana dashboards on startup. If no other options -are set, the dashboards archive is downloaded from the elastic.co website. +If this option is set to true, {beatname_uc} loads the sample Kibana dashboards +automatically on startup. If no other options are set, the dashboard archive is +downloaded from the elastic.co website. +To load dashboards from a different location, you can +configure one of the following options: <>, +<>, or <>. + +To load dashboards from a snapshot URL, use the <> +option and optionally <>. + +[[url-option]] ===== url -The URL from where to download the dashboards archive. By default this URL has a -value which is computed based on the Beat name and version. For released -versions, this URL points to the dashboard archive on the artifacts.elastic.co +The URL to use for downloading the dashboard archive. By default this URL +is computed based on the Beat name and version. For released versions, +this URL points to the dashboard archive on the artifacts.elastic.co website. +[[directory-option]] ===== directory -The directory from where to read the dashboards. It is used instead of the URL -when it has a value. +The directory that contains the dashboards to load. If this option is set, +{beatname_uc} looks for dashboards in the specified directory instead of +downloading an archive from a URL. +[[file-option]] ===== file -The file archive (zip file) from where to read the dashboards. It is used -instead of the URL when it has a value. +The file archive (zip file) that contains the dashboards to load. If this option +is set, {beatname_uc} looks for a dashboard archive in the specified path +instead of downloading the archive from a URL. +[[snapshot-option]] ===== snapshot If this option is set to true, the snapshot URL is used instead of the default URL. +[[snapshot-url-option]] ===== snapshot_url -The URL from where to download the snapshot version of the dashboards. By -default this has a value which is computed based on the Beat name and version. +The URL to use for downloading the snapshot version of the dashboards. By +default the snapshot URL is computed based on the Beat name and version. ===== beat -In case the archive contains the dashboards from multiple Beats, this lets you -select which one to load. You can load all the dashboards in the archive by -setting this to the empty string. The default is "{beatname_lc}". +In case the archive contains the dashboards for multiple Beats, this setting +lets you select the Beat for which you want to load dashboards. To load all the +dashboards in the archive, set this option to an empty string. The default is ++"{beatname_lc}"+. ===== kibana_index -The name of the Kibana index to use for setting the configuration. Default is -".kibana" +The name of the Kibana index to use for setting the configuration. The default +is `".kibana"` ===== index -The Elasticsearch index name. This overwrites the index name defined in the -dashboards and index pattern. Example: "testbeat-*" +The Elasticsearch index name. This setting overwrites the index name defined +in the dashboards and index pattern. Example: `"testbeat-*"` diff --git a/vendor/github.com/elastic/beats/libbeat/docs/generalconfig.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/generalconfig.asciidoc index 08c40651..c1a7c540 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/generalconfig.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/generalconfig.asciidoc @@ -11,7 +11,7 @@ ////////////////////////////////////////////////////////////////////////// [[configuration-general]] -=== General Configuration +=== General The general section of the +{beatname_lc}.yml+ config file contains configuration options for the Beat and some general settings that control its behaviour. diff --git a/vendor/github.com/elastic/beats/libbeat/docs/gettingstarted.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/gettingstarted.asciidoc index cbeb8936..e508c5fe 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/gettingstarted.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/gettingstarted.asciidoc @@ -39,6 +39,14 @@ mac>> for OS X, and <> for Windows): [[deb]]*deb:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Elasticsearch has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- sudo apt-get install openjdk-8-jre @@ -47,8 +55,18 @@ sudo dpkg -i elasticsearch-{ES-version}.deb sudo /etc/init.d/elasticsearch start ---------------------------------------------------------------------- +endif::[] + [[rpm]]*rpm:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Elasticsearch has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- sudo yum install java-1.8.0-openjdk @@ -57,8 +75,18 @@ sudo rpm -i elasticsearch-{ES-version}.rpm sudo service elasticsearch start ---------------------------------------------------------------------- +endif::[] + [[mac]]*mac:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Elasticsearch has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- # install Java, e.g. from: https://www.java.com/en/download/manual.jsp @@ -68,8 +96,18 @@ cd elasticsearch-{ES-version} ./bin/elasticsearch ---------------------------------------------------------------------- +endif::[] + [[win]]*win:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Elasticsearch has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + . If necessary, download and install the latest version of the Java from https://www.java.com[www.java.com]. . Download the Elasticsearch {ES-version} Windows zip file from the @@ -91,6 +129,8 @@ cd C:\Program Files\elasticsearch-{ES-version} bin\elasticsearch.bat ---------------------------------------------------------------------- +endif::[] + You can learn more about installing, configuring, and running Elasticsearch in the https://www.elastic.co/guide/en/elasticsearch/reference/current/index.html[Elasticsearch Reference]. @@ -147,6 +187,14 @@ with your system: *deb:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Logstash has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- sudo apt-get install openjdk-8-jre @@ -154,8 +202,18 @@ curl -L -O https://artifacts.elastic.co/downloads/logstash/logstash-{LS-version} sudo dpkg -i logstash-{LS-version}.deb ---------------------------------------------------------------------- +endif::[] + *rpm:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Logstash has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- sudo yum install java-1.8.0-openjdk @@ -163,8 +221,18 @@ curl -L -O https://artifacts.elastic.co/downloads/logstash/logstash-{LS-version} sudo rpm -i logstash-{LS-version}.rpm ---------------------------------------------------------------------- +endif::[] + *mac:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Logstash has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- # install Java, e.g. from: https://www.java.com/en/download/manual.jsp @@ -172,8 +240,18 @@ curl -L -O https://artifacts.elastic.co/downloads/logstash/logstash-{LS-version} unzip logstash-{LS-version}.zip ---------------------------------------------------------------------- +endif::[] + *win:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Logstash has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + . If necessary, download and install the latest version of the Java from https://www.java.com[www.java.com]. . Download the Logstash {LS-version} Windows zip file from the @@ -183,13 +261,14 @@ https://www.elastic.co/downloads/logstash[downloads page]. Don't start Logstash yet. You need to set a couple of configuration options first. +endif::[] + [[logstash-setup]] ==== Setting Up Logstash In this setup, the Beat sends events to Logstash. Logstash receives -these events by using the -https://www.elastic.co/guide/en/logstash/current/plugins-inputs-beats.html[Beats input plugin for Logstash] and then sends the transaction to Elasticsearch by using the -http://www.elastic.co/guide/en/logstash/current/plugins-outputs-elasticsearch.html[Elasticsearch +these events by using the {logstashdoc}/plugins-inputs-beats.html[Beats input plugin for Logstash] and then sends the transaction to Elasticsearch by using the +{logstashdoc}/plugins-outputs-elasticsearch.html[Elasticsearch output plugin for Logstash]. The Elasticsearch output plugin uses the bulk API, making indexing very efficient. @@ -225,6 +304,7 @@ and to index into Elasticsearch. You configure Logstash by creating a configuration file. For example, you can save the following example configuration to a file called `logstash.conf`: + +-- [source,ruby] ------------------------------------------------------------------------------ input { @@ -237,15 +317,22 @@ output { elasticsearch { hosts => "localhost:9200" manage_template => false - index => "%{[@metadata][beat]}-%{+YYYY.MM.dd}" - document_type => "%{[@metadata][type]}" + index => "%{[@metadata][beat]}-%{+YYYY.MM.dd}" <1> + document_type => "%{[@metadata][type]}" <2> } } ------------------------------------------------------------------------------ -+ +<1> `%{[@metadata][beat]}` sets the first part of the index name to the value +of the `beat` metadata field, and `%{+YYYY.MM.dd}` sets the second part of the +name to a date based on the Logstash `@timestamp` field. For example: ++{beatname_lc}-2017.03.29+. +<2> `%{[@metadata][type]}` sets the document type based on the value of the `type` +metadata field. + Logstash uses this configuration to index events in Elasticsearch in the same way that the Beat would, but you get additional buffering and other capabilities provided by Logstash. +-- To use this setup, you'll also need to configure your Beat to use Logstash. For more information, see the documentation for the Beat. @@ -334,6 +421,14 @@ Use the following commands to download and run Kibana. *deb or rpm:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Kibana has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- curl -L -O https://artifacts.elastic.co/downloads/kibana/kibana-{Kibana-version}-linux-x86_64.tar.gz @@ -342,8 +437,18 @@ cd kibana-{Kibana-version}-linux-x86_64/ ./bin/kibana ---------------------------------------------------------------------- +endif::[] + *mac:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Kibana has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- curl -L -O https://artifacts.elastic.co/downloads/kibana/kibana-{Kibana-version}-darwin-x86_64.tar.gz @@ -352,8 +457,18 @@ cd kibana-{Kibana-version}-darwin-x86_64/ ./bin/kibana ---------------------------------------------------------------------- +endif::[] + *win:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Kibana has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + . Download the Kibana {Kibana-version} Windows zip file from the https://www.elastic.co/downloads/kibana[downloads page]. @@ -374,6 +489,8 @@ cd C:\Program Files\kibana-{Kibana-version}-windows bin\kibana.bat ---------------------------------------------------------------------- +endif::[] + You can find Kibana binaries for other operating systems on the https://www.elastic.co/downloads/kibana[Kibana downloads page]. diff --git a/vendor/github.com/elastic/beats/libbeat/docs/index.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/index.asciidoc index eb4b3c82..d702c77d 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/index.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/index.asciidoc @@ -9,6 +9,7 @@ include::./version.asciidoc[] :winlogbeat: http://www.elastic.co/guide/en/beats/winlogbeat/{doc-branch} :heartbeat: http://www.elastic.co/guide/en/beats/heartbeat/{doc-branch} :securitydoc: https://www.elastic.co/guide/en/x-pack/5.2 +:logstashdoc: https://www.elastic.co/guide/en/logstash/{doc-branch} :beatname_lc: beatname :beatname_uc: a Beat :security: X-Pack Security @@ -33,14 +34,10 @@ include::./upgrading.asciidoc[] include::./config-file-format.asciidoc[] -pass::[] - include::./newbeat.asciidoc[] include::./event-conventions.asciidoc[] include::./newdashboards.asciidoc[] -pass::[] - include::./release.asciidoc[] diff --git a/vendor/github.com/elastic/beats/libbeat/docs/loggingconfig.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/loggingconfig.asciidoc index c03201b2..df7d7e11 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/loggingconfig.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/loggingconfig.asciidoc @@ -11,7 +11,7 @@ ////////////////////////////////////////////////////////////////////////// [[configuration-logging]] -=== Logging Configuration +=== Logging The `logging` section of the +{beatname_lc}.yml+ config file contains options for configuring the Beats logging output. The logging system can write logs to diff --git a/vendor/github.com/elastic/beats/libbeat/docs/newbeat.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/newbeat.asciidoc index 1f7a6ffa..7a6a7b71 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/newbeat.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/newbeat.asciidoc @@ -188,6 +188,8 @@ To compile the Beat, make sure you are in the Beat directory (`$GOPATH/src/githu make --------- +NOTE: we don't support the `-j` option for make at the moment. + Running this command creates the binary called `countbeat` in `$GOPATH/src/github.com/{user}/countbeat`. Now run the Beat: diff --git a/vendor/github.com/elastic/beats/libbeat/docs/outputconfig.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/outputconfig.asciidoc index 713b462a..bc2fb52a 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/outputconfig.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/outputconfig.asciidoc @@ -11,7 +11,7 @@ ////////////////////////////////////////////////////////////////////////// [[elasticsearch-output]] -=== Elasticsearch Output Configuration +=== Elasticsearch Output When you specify Elasticsearch for the output, the Beat sends the transactions directly to Elasticsearch by using the Elasticsearch HTTP API. @@ -353,33 +353,54 @@ See <> for more information. [[logstash-output]] -=== Logstash Output Configuration +=== Logstash Output + +*Prerequisite:* To use Logstash as an output, you must +{libbeat}/logstash-installation.html#logstash-setup[install and configure] the Beats input +plugin for Logstash. The Logstash output sends the events directly to Logstash by using the lumberjack -protocol, which runs over TCP. To use this option, you must -{libbeat}/logstash-installation.html#logstash-setup[install and configure] the Beats input -plugin for Logstash. Logstash allows for additional processing and routing of +protocol, which runs over TCP. Logstash allows for additional processing and routing of generated events. -Every event sent to Logstash contains additional metadata for indexing and filtering: +Here is an example of how to configure {beatname_uc} to use Logstash: -[source,json] +["source","yaml",subs="attributes"] +------------------------------------------------------------------------------ +output.logstash: + hosts: ["localhost:5044"] +------------------------------------------------------------------------------ + +==== Accessing Metadata Fields + +Every event sent to Logstash contains the following metadata fields that you can +use in Logstash for indexing and filtering: + +["source","json",subs="attributes"] ------------------------------------------------------------------------------ { ... - "@metadata": { - "beat": "", - "type": "" + "@metadata": { <1> + "beat": "{beatname_lc}", <2> + "type": "" <3> } } ------------------------------------------------------------------------------ +<1> {beatname_uc} uses the `@metadata` field to send metadata to Logstash. The +contents of the `@metadata` field only exist in Logstash and are not part of any +events sent from Logstash. See the +{logstashdoc}/event-dependent-configuration.html#metadata[Logstash documentation] +for more about the `@metadata` field. +<2> The default is {beatname_lc}. To change this value, set the +<> option in the {beatname_uc} config file. +<3> The value of `type` varies depending on the event type. + +You can access this metadata from within the Logstash config file to set values +dynamically based on the contents of the metadata. -In Logstash, you can configure the Elasticsearch output plugin to use the -metadata and event type for indexing. - -The following Logstash configuration file for the versions 2.x and 5.x sets Logstash to -use the index and document type reported by Beats for indexing events into Elasticsearch. -The index used will depend on the `@timestamp` field as identified by Logstash. +For example, the following Logstash configuration file for versions 2.x and +5.x sets Logstash to use the index and document type reported by Beats for +indexing events into Elasticsearch: [source,logstash] ------------------------------------------------------------------------------ @@ -393,24 +414,21 @@ input { output { elasticsearch { hosts => ["http://localhost:9200"] - index => "%{[@metadata][beat]}-%{+YYYY.MM.dd}" - document_type => "%{[@metadata][type]}" + index => "%{[@metadata][beat]}-%{+YYYY.MM.dd}" <1> + document_type => "%{[@metadata][type]}" <2> } } ------------------------------------------------------------------------------ +<1> `%{[@metadata][beat]}` sets the first part of the index name to the value +of the `beat` metadata field, and `%{+YYYY.MM.dd}` sets the second part of the +name to a date based on the Logstash `@timestamp` field. For example: ++{beatname_lc}-2017.03.29+. +<2> `%{[@metadata][type]}` sets the document type based on the value of the `type` +metadata field. Events indexed into Elasticsearch with the Logstash configuration shown here will be similar to events directly indexed by Beats into Elasticsearch. -Here is an example of how to configure the Beat to use Logstash: - -["source","yaml",subs="attributes"] ------------------------------------------------------------------------------- -output.logstash: - hosts: ["localhost:5044"] - index: {beatname_lc} ------------------------------------------------------------------------------- - ==== Compatibility This output works with all compatible versions of Logstash. See "Supported Beats Versions" in the https://www.elastic.co/support/matrix#show_compatibility[Elastic Support Matrix]. @@ -510,6 +528,7 @@ The `proxy_use_local_resolver` option determines if Logstash hostnames are resolved locally when using a proxy. The default value is false which means that when a proxy is used the name resolution occurs on the proxy server. +[[logstash-index]] ===== index The index root name to write events to. The default is the Beat name. @@ -556,7 +575,7 @@ Elasticsearch. Beats that publish data in batches (such as Filebeat) send events spooler size. [[kafka-output]] -=== Kafka Output Configuration +=== Kafka Output The Kafka output sends the events to Apache Kafka. @@ -754,7 +773,7 @@ Configuration options for SSL parameters like the root CA for Kafka connections. <> for more information. [[redis-output]] -=== Redis Output Configuration +=== Redis Output The Redis output inserts the events into a Redis list or a Redis channel. This output plugin is compatible with @@ -975,7 +994,7 @@ This option determines whether Redis hostnames are resolved locally when using a The default value is false, which means that name resolution occurs on the proxy server. [[file-output]] -=== File Output Configuration +=== File Output The File output dumps the transactions into a file where each transaction is in a JSON format. Currently, this output is used for testing, but it can be used as input for @@ -1030,7 +1049,7 @@ Output codec configuration. If the `codec` section is missing, events will be js See <> for more information. [[console-output]] -=== Console Output Configuration +=== Console Output The Console output writes events in JSON format to stdout. @@ -1073,7 +1092,7 @@ Setting `bulk_max_size` to 0 disables buffering in libbeat. [[configuration-output-ssl]] -=== SSL Configuration +=== SSL You can specify SSL options for any output that supports SSL. @@ -1209,7 +1228,7 @@ The following elliptic curve types are available: * P-521 [[configuration-output-codec]] -=== Output Codec Configuration +=== Output Codec For outputs that do not require a specific encoding, you can change the encoding by using the codec configuration. You can specify either the `json` or `format` diff --git a/vendor/github.com/elastic/beats/libbeat/docs/release.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/release.asciidoc index fa51e61a..538b364c 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/release.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/release.asciidoc @@ -6,6 +6,7 @@ -- This section summarizes the changes in each release. +* <> * <> * <> * <> diff --git a/vendor/github.com/elastic/beats/libbeat/docs/repositories.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/repositories.asciidoc index f723eb6c..963ea52c 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/repositories.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/repositories.asciidoc @@ -25,6 +25,14 @@ to sign all our packages. It is available from https://pgp.mit.edu. [float] ==== APT +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Beats has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + To add the Beats repository for APT: . Download and install the Public Signing Key: @@ -62,6 +70,21 @@ the following: Simply delete the `deb-src` entry from the `/etc/apt/sources.list` file, and the installation should work as expected. ================================================== +ifeval::["{beatname_uc}"=="Heartbeat"] + +. On Debian or Ubuntu, pin the repository before installing to ensure that the +correct Elastic Heartbeat package is installed. To do this, edit +`/etc/apt/preferences` (or `/etc/apt/preferences.d/heartbeat`) as follows: ++ +[source,shell] +-------------------------------------------------- +Package: heartbeat +Pin: origin artifacts.elastic.co +Pin-Priority: 700 +-------------------------------------------------- + +endif::[] + . Run `apt-get update`, and the repository is ready for use. For example, you can install {beatname_uc} by running: + @@ -77,9 +100,19 @@ sudo apt-get update && sudo apt-get install {beatname_lc} sudo update-rc.d {beatname_lc} defaults 95 10 -------------------------------------------------- +endif::[] + [float] ==== YUM +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of Beats has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + To add the Beats repository for YUM: . Download and install the public signing key: @@ -118,3 +151,6 @@ sudo yum install {beatname_lc} -------------------------------------------------- sudo chkconfig --add {beatname_lc} -------------------------------------------------- + +endif::[] + diff --git a/vendor/github.com/elastic/beats/libbeat/docs/shared-config-ingest.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/shared-config-ingest.asciidoc index 99282db6..a86db676 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/shared-config-ingest.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/shared-config-ingest.asciidoc @@ -50,7 +50,7 @@ To add the pipeline in Elasticsearch, you would run: [source,shell] ------------------------------------------------------------------------------ -curl -XPUT 'http://localhost:9200/_ingest/pipeline/test-pipeline' -d@pipeline.json +curl -H 'Content-Type: application/json' -XPUT 'http://localhost:9200/_ingest/pipeline/test-pipeline' -d@pipeline.json ------------------------------------------------------------------------------ Then in the +{beatname_lc}.yml+ file, you would specify: diff --git a/vendor/github.com/elastic/beats/libbeat/docs/shared-faq.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/shared-faq.asciidoc index a287878c..dde20cc2 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/shared-faq.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/shared-faq.asciidoc @@ -21,6 +21,19 @@ You may encounter errors loading the config file on POSIX operating systems if: See {libbeat}/config-file-permissions.html[Config File Ownership and Permissions] for more about resolving these errors. +[float] +[[error-found-unexpected-character]] +=== Found Unexpected or Unknown Characters? + +Either there is a problem with the structure of your config file, or you have +used a path or expression that the YAML parser cannot resolve because the config +file contains characters that aren't properly escaped. + +If the YAML file contains paths with spaces or unusual characters, wrap the +paths in single quotation marks (see <>). + +Also see the general advice under <>. + [float] [[connection-problem]] === Logstash connection doesn't work? diff --git a/vendor/github.com/elastic/beats/libbeat/docs/shared-logstash-config.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/shared-logstash-config.asciidoc index 51a40b8b..3024d04d 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/shared-logstash-config.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/shared-logstash-config.asciidoc @@ -9,6 +9,10 @@ //// include::../../libbeat/docs/shared-logstash-config.asciidoc[] ////////////////////////////////////////////////////////////////////////// +*Prerequisite:* To use Logstash as an output, you must also +{libbeat}/logstash-installation.html#logstash-setup[set up Logstash] to receive events +from Beats. + If you want to use Logstash to perform additional processing on the data collected by {beatname_uc}, you need to configure {beatname_uc} to use Logstash. @@ -47,7 +51,4 @@ options specified: +.\winlogbeat.exe -c .\winlogbeat.yml -configtest -e+. endif::win[] -To use this configuration, you must also -{libbeat}/logstash-installation.html#logstash-setup[set up Logstash] to receive events -from Beats. diff --git a/vendor/github.com/elastic/beats/libbeat/docs/shared-path-config.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/shared-path-config.asciidoc index 7aac4ca4..eaadea31 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/shared-path-config.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/shared-path-config.asciidoc @@ -11,7 +11,7 @@ ////////////////////////////////////////////////////////////////////////// [[configuration-path]] -=== Paths Configuration +=== Paths The `path` section of the +{beatname_lc}.yml+ config file contains configuration options that define where the Beat looks for its files. For example, all Beats diff --git a/vendor/github.com/elastic/beats/libbeat/docs/shared-template-load.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/shared-template-load.asciidoc index 78462f86..3ce8def2 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/shared-template-load.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/shared-template-load.asciidoc @@ -67,7 +67,7 @@ ifdef::allplatforms[] ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- -curl -XPUT 'http://localhost:9200/_template/{beatname_lc}' -d@/etc/{beatname_lc}/{beatname_lc}.template.json +curl -H 'Content-Type: application/json' -XPUT 'http://localhost:9200/_template/{beatname_lc}' -d@/etc/{beatname_lc}/{beatname_lc}.template.json ---------------------------------------------------------------------- *mac:* @@ -75,7 +75,7 @@ curl -XPUT 'http://localhost:9200/_template/{beatname_lc}' -d@/etc/{beatname_lc} ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- cd {beatname_lc}-{version}-darwin-x86_64 -curl -XPUT 'http://localhost:9200/_template/{beatname_lc}' -d@{beatname_lc}.template.json +curl -H 'Content-Type: application/json' -XPUT 'http://localhost:9200/_template/{beatname_lc}' -d@{beatname_lc}.template.json ---------------------------------------------------------------------- *win:* @@ -84,7 +84,7 @@ endif::allplatforms[] ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- -PS C:\Program Files{backslash}{beatname_uc}> Invoke-WebRequest -Method Put -InFile {beatname_lc}.template.json -Uri http://localhost:9200/_template/{beatname_lc}?pretty +PS C:\Program Files{backslash}{beatname_uc}> Invoke-WebRequest -Method Put -InFile {beatname_lc}.template.json -Uri http://localhost:9200/_template/{beatname_lc}?pretty -ContentType application/json ---------------------------------------------------------------------- where `localhost:9200` is the IP and port where Elasticsearch is listening. diff --git a/vendor/github.com/elastic/beats/libbeat/docs/version.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/version.asciidoc index 87a36934..093b64f8 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/version.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/version.asciidoc @@ -1,3 +1,4 @@ -:stack-version: 5.3.0 +:stack-version: 5.3.1 :doc-branch: 5.3 :go-version: 1.7.4 +:release-state: released diff --git a/vendor/github.com/elastic/beats/libbeat/docs/yaml.asciidoc b/vendor/github.com/elastic/beats/libbeat/docs/yaml.asciidoc index 62739625..7a24bdab 100644 --- a/vendor/github.com/elastic/beats/libbeat/docs/yaml.asciidoc +++ b/vendor/github.com/elastic/beats/libbeat/docs/yaml.asciidoc @@ -9,31 +9,38 @@ //// include::../../libbeat/docs/yaml.asciidoc[] ////////////////////////////////////////////////////////////////////////// +ifdef::standalone[] + [[yaml-tips]] == YAML Tips and Gotchas -The {beatname_uc} configuration file uses http://yaml.org/[YAML] for its syntax. When you edit the +endif::[] + +The configuration file uses http://yaml.org/[YAML] for its syntax. When you edit the file to modify configuration settings, there are a few things that you should know. [float] === Use Spaces for Indentation -Indentation is meaningful in YAML. Make sure that you use spaces, rather than tab characters, to indent sections. +Indentation is meaningful in YAML. Make sure that you use spaces, rather than tab characters, to indent sections. + +In the default configuration files and in all the examples in the documentation, +we use 2 spaces per indentation level. We recommend you do the same. [float] === Look at the Default Config File for Structure -The best way to understand where to define a configuration option is by looking at -the {beatname_lc}.yml configuration file. The configuration file contains most of the -configuration options that are available for {beatname_uc}. To change a configuration setting, -simply uncomment the line and change the setting. +The best way to understand where to define a configuration option is by looking +at the provided sample configuration files. The configuration files contain most +of the default configurations that are available for the Beat. To change a setting, +simply uncomment the line and change the values. [float] === Test Your Config File You can test your configuration file to verify that the structure is valid. Simply change to the directory where the binary is installed, and run -{beatname_uc} in the foreground with the `-configtest` flag specified. For example: +the Beat in the foreground with the `-configtest` flag specified. For example: ifdef::allplatforms[] @@ -53,11 +60,33 @@ ifdef::win[] endif::win[] -You'll see a message if {beatname_uc} finds an error in the file. +You'll see a message if the Beat finds an error in the file. [float] === Wrap Regular Expressions in Single Quotation Marks If you need to specify a regular expression in a YAML file, it's a good idea to wrap the regular expression in single quotation marks to work around YAML's tricky rules for string escaping. -For more information about YAML, see http://yaml.org/. \ No newline at end of file +For more information about YAML, see http://yaml.org/. + +[float] +[[wrap-paths-in-quotes]] +=== Wrap Paths in Single Quotation Marks + +Windows paths in particular sometimes contain spaces or characters, such as drive +letters or triple dots, that may be misinterpreted by the YAML parser. + +To avoid this problem, it's a good idea to wrap paths in single quotation marks. + +[float] +[[avoid-leading-zeros]] +=== Avoid Using Leading Zeros in Numeric Values + +If you use a leading zero (for example, `09`) in a numeric field without +wrapping the value in single quotation marks, the value may be interpreted +incorrectly by the YAML parser. If the value is a valid octal, it's converted +to an integer. If not, it's converted to a float. + +To prevent unwanted type conversions, avoid using leading zeros in field values, +or wrap the values in single quotation marks. + diff --git a/vendor/github.com/elastic/beats/libbeat/fields.yml b/vendor/github.com/elastic/beats/libbeat/fields.yml index c7890584..4ad43c37 100644 --- a/vendor/github.com/elastic/beats/libbeat/fields.yml +++ b/vendor/github.com/elastic/beats/libbeat/fields.yml @@ -92,3 +92,32 @@ - name: meta.cloud.region description: > Region in which this host is running. +- key: kubernetes + title: Kubernetes info + description: > + Kubernetes metadata added by the kubernetes processor + fields: + - name: kubernetes.pod.name + type: keyword + description: > + Kubernetes pod name + + - name: kubernetes.namespace + type: keyword + description: > + Kubernetes namespace + + - name: kubernetes.labels + type: object + description: > + Kubernetes labels map + + - name: kubernetes.annotations + type: object + description: > + Kubernetes annotations map + + - name: kubernetes.container.name + type: keyword + description: > + Kubernetes container name diff --git a/vendor/github.com/elastic/beats/libbeat/scripts/Makefile b/vendor/github.com/elastic/beats/libbeat/scripts/Makefile index 89df7c3b..e27c87ef 100755 --- a/vendor/github.com/elastic/beats/libbeat/scripts/Makefile +++ b/vendor/github.com/elastic/beats/libbeat/scripts/Makefile @@ -327,7 +327,7 @@ install-home: if [ -d _meta/module.generated ]; then \ install -d -m 755 ${HOME_PREFIX}/module; \ rsync -av _meta/module.generated/ ${HOME_PREFIX}/module/; \ - chmod -R go-w _meta/module.generated; \ + chmod -R go-w ${HOME_PREFIX}/module/; \ fi # Prepares for packaging. Builds binaries and creates homedir data diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/beat.full.yml b/vendor/github.com/elastic/beats/metricbeat/_meta/beat.full.yml deleted file mode 100644 index a4a9adf6..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/beat.full.yml +++ /dev/null @@ -1,359 +0,0 @@ -########################## Metricbeat Configuration ########################### - -# This file is a full configuration example documenting all non-deprecated -# options in comments. For a shorter configuration example, that contains only -# the most common options, please see metricbeat.yml in the same directory. -# -# You can find the full configuration reference here: -# https://www.elastic.co/guide/en/beats/metricbeat/index.html - -#============================ Config Reloading =============================== - -# Config reloading allows to dynamically load modules. Each file which is -# monitored must contain one or multiple modules as a list. -metricbeat.config.modules: - - # Glob pattern for configuration reloading - path: ${path.config}/conf.d/*.yml - - # Period on which files under path should be checked for chagnes - reload.period: 10s - - # Set to true to enable config reloading - reload.enabled: false - -#========================== Modules configuration ============================ -metricbeat.modules: - -#------------------------------- System Module ------------------------------- -- module: system - metricsets: - # CPU stats - - cpu - - # System Load stats - - load - - # Per CPU core stats - #- core - - # IO stats - #- diskio - - # Per filesystem stats - - filesystem - - # File system summary stats - - fsstat - - # Memory stats - - memory - - # Network stats - - network - - # Per process stats - - process - - # Sockets and connection info (linux only) - #- socket - enabled: true - period: 10s - processes: ['.*'] - - # if true, exports the CPU usage in ticks, together with the percentage values - #cpu_ticks: false - - # If false, cmdline of a process is not cached. - #process.cmdline.cache.enabled: true - - # Enable collection of cgroup metrics from processes on Linux. - #process.cgroups.enabled: true - - # A list of regular expressions used to whitelist environment variables - # reported with the process metricset's events. Defaults to empty. - #process.env.whitelist: [] - - # Configure reverse DNS lookup on remote IP addresses in the socket metricset. - #socket.reverse_lookup.enabled: false - #socket.reverse_lookup.success_ttl: 60s - #socket.reverse_lookup.failure_ttl: 60s - -#------------------------------- Apache Module ------------------------------- -#- module: apache - #metricsets: ["status"] - #enabled: true - #period: 10s - - # Apache hosts - #hosts: ["http://127.0.0.1"] - - # Path to server status. Default server-status - #server_status_path: "server-status" - - # Username of hosts. Empty by default - #username: test - - # Password of hosts. Empty by default - #password: test123 - -#-------------------------------- ceph Module -------------------------------- -#- module: ceph -# metricsets: ["cluster_disk", "cluster_health", "monitor_health", "pool_disk"] -# enabled: true -# period: 10s -# hosts: ["localhost:5000"] - -#------------------------------ Couchbase Module ----------------------------- -#- module: couchbase - #metricsets: ["cluster", "node", "bucket"] - #enabled: true - #period: 10s - #hosts: ["localhost:8091"] - -#------------------------------- Docker Module ------------------------------- -#- module: docker - #metricsets: ["container", "cpu", "diskio", "healthcheck", "info", "memory", "network"] - #hosts: ["unix:///var/run/docker.sock"] - #enabled: true - #period: 10s - - # To connect to Docker over TLS you must specify a client and CA certificate. - #ssl: - #certificate_authority: "/etc/pki/root/ca.pem" - #certificate: "/etc/pki/client/cert.pem" - #key: "/etc/pki/client/cert.key" - -#---------------------------- elasticsearch Module --------------------------- -#- module: elasticsearch -# metricsets: ["node", "node_stats", "stats"] -# enabled: true -# period: 10s -# hosts: ["localhost:9200"] - - -#------------------------------- golang Module ------------------------------- -#- module: golang -# metricsets: ["expvar","heap"] -# enabled: true -# period: 10s -# hosts: ["localhost:6060"] -# heap.path: "/debug/vars" -# expvar: -# namespace: "example" -# path: "/debug/vars" - -#------------------------------- HAProxy Module ------------------------------ -#- module: haproxy - #metricsets: ["info", "stat"] - #enabled: true - #period: 10s - #hosts: ["tcp://127.0.0.1:14567"] - -#------------------------------- Jolokia Module ------------------------------ -#- module: jolokia -# metricsets: ["jmx"] -# enabled: true -# period: 10s -# hosts: ["localhost"] -# namespace: "metrics" -# path: "/jolokia/?ignoreErrors=true&canonicalNaming=false" -# jmx.mapping: -# jmx.application: -# jmx.instance: - -#-------------------------------- kafka Module ------------------------------- -#- module: kafka - #metricsets: ["partition"] - #enabled: true - #period: 10s - #hosts: ["localhost:9092"] - - #client_id: metricbeat - #retries: 3 - #backoff: 250ms - - # List of Topics to query metadata for. If empty, all topics will be queried. - #topics: [] - - # Optional SSL. By default is off. - # List of root certificates for HTTPS server verifications - #ssl.certificate_authorities: ["/etc/pki/root/ca.pem"] - - # Certificate for SSL client authentication - #ssl.certificate: "/etc/pki/client/cert.pem" - - # Client Certificate Key - #ssl.key: "/etc/pki/client/cert.key" - - # SASL authentication - #username: "" - #password: "" - -#------------------------------- kibana Module ------------------------------- -- module: kibana - metricsets: ["status"] - enabled: true - period: 10s - hosts: ["localhost:5601"] - - -#------------------------------- kubelet Module ------------------------------ -#- module: kubelet -# metricsets: ["node","container","volume","pod","system"] -# enabled: true -# period: 10s -# hosts: ["localhost:10255"] - - -#------------------------------ memcached Module ----------------------------- -- module: memcached - metricsets: ["stats"] - enabled: true - period: 10s - hosts: ["localhost:11211"] - - -#------------------------------- MongoDB Module ------------------------------ -#- module: mongodb - #metricsets: ["dbstats", "status"] - #enabled: true - #period: 10s - - # The hosts must be passed as MongoDB URLs in the format: - # [mongodb://][user:pass@]host[:port]. - # The username and password can also be set using the respective configuration - # options. The credentials in the URL take precedence over the username and - # password configuration options. - #hosts: ["localhost:27017"] - - # Username to use when connecting to MongoDB. Empty by default. - #username: user - - # Password to use when connecting to MongoDB. Empty by default. - #password: pass - -#-------------------------------- MySQL Module ------------------------------- -#- module: mysql - #metricsets: ["status"] - #enabled: true - #period: 10s - - # Host DSN should be defined as "user:pass@tcp(127.0.0.1:3306)/" - # The username and password can either be set in the DSN or using the username - # and password config options. Those specified in the DSN take precedence. - #hosts: ["root:secret@tcp(127.0.0.1:3306)/"] - - # Username of hosts. Empty by default. - #username: root - - # Password of hosts. Empty by default. - #password: secret - - # By setting raw to true, all raw fields from the status metricset will be added to the event. - #raw: false - -#-------------------------------- Nginx Module ------------------------------- -#- module: nginx - #metricsets: ["stubstatus"] - #enabled: true - #period: 10s - - # Nginx hosts - #hosts: ["http://127.0.0.1"] - - # Path to server status. Default server-status - #server_status_path: "server-status" - -#------------------------------- php_fpm Module ------------------------------ -#- module: php_fpm - #metricsets: ["pool"] - #enabled: true - #period: 10s - #status_path: "/status" - #hosts: ["localhost:8080"] - -#----------------------------- PostgreSQL Module ----------------------------- -#- module: postgresql - #metricsets: - # Stats about every PostgreSQL database - #- database - - # Stats about the background writer process's activity - #- bgwriter - - # Stats about every PostgreSQL process - #- activity - - #enabled: true - #period: 10s - - # The host must be passed as PostgreSQL URL. Example: - # postgres://localhost:5432?sslmode=disable - # The available parameters are documented here: - # https://godoc.org/github.com/lib/pq#hdr-Connection_String_Parameters - #hosts: ["postgres://localhost:5432"] - - # Username to use when connecting to PostgreSQL. Empty by default. - #username: user - - # Password to use when connecting to PostgreSQL. Empty by default. - #password: pass - - -#----------------------------- Prometheus Module ----------------------------- -#- module: prometheus - #metricsets: ["stats"] - #enabled: true - #period: 10s - #hosts: ["localhost:9090"] - #metrics_path: /metrics - #namespace: example - -#-------------------------------- Redis Module ------------------------------- -#- module: redis - #metricsets: ["info", "keyspace"] - #enabled: true - #period: 10s - - # Redis hosts - #hosts: ["127.0.0.1:6379"] - - # Timeout after which time a metricset should return an error - # Timeout is by default defined as period, as a fetch of a metricset - # should never take longer then period, as otherwise calls can pile up. - #timeout: 1s - - # Optional fields to be added to each event - #fields: - # datacenter: west - - # Network type to be used for redis connection. Default: tcp - #network: tcp - - # Max number of concurrent connections. Default: 10 - #maxconn: 10 - - # Filters can be used to reduce the number of fields sent. - #filters: - # - include_fields: - # fields: ["stats"] - - # Redis AUTH password. Empty by default. - #password: foobared - -#------------------------------- Windows Module ------------------------------ -#- module: windows -# metricsets: ["perfmon"] -# enabled: true -# period: 10s -# perfmon.counters: - -#------------------------------ ZooKeeper Module ----------------------------- -#- module: zookeeper - #metricsets: ["mntr"] - #enabled: true - #period: 10s - #hosts: ["localhost:2181"] - - diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/beat.yml b/vendor/github.com/elastic/beats/metricbeat/_meta/beat.yml deleted file mode 100644 index 5280205f..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/beat.yml +++ /dev/null @@ -1,57 +0,0 @@ -###################### Metricbeat Configuration Example ####################### - -# This file is an example configuration file highlighting only the most common -# options. The metricbeat.full.yml file from the same directory contains all the -# supported options with more comments. You can use it as a reference. -# -# You can find the full configuration reference here: -# https://www.elastic.co/guide/en/beats/metricbeat/index.html - -#========================== Modules configuration ============================ -metricbeat.modules: - -#------------------------------- System Module ------------------------------- -- module: system - metricsets: - # CPU stats - - cpu - - # System Load stats - - load - - # Per CPU core stats - #- core - - # IO stats - #- diskio - - # Per filesystem stats - - filesystem - - # File system summary stats - - fsstat - - # Memory stats - - memory - - # Network stats - - network - - # Per process stats - - process - - # Sockets (linux only) - #- socket - enabled: true - period: 10s - processes: ['.*'] - -#------------------------------- kibana Module ------------------------------- -- module: kibana - metricsets: ["status"] - enabled: true - period: 10s - hosts: ["localhost:5601"] - - - diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/CPU-slash-Memory-per-container.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/CPU-slash-Memory-per-container.json deleted file mode 100644 index 7171f257..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/CPU-slash-Memory-per-container.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "CPU/Memory per container", - "uiStateJSON": "{\"P-2\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}},\"P-4\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}},\"P-5\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}}", - "panelsJSON": "[{\"col\":4,\"id\":\"Container-CPU-usage\",\"panelIndex\":2,\"row\":1,\"size_x\":9,\"size_y\":4,\"type\":\"visualization\"},{\"col\":1,\"id\":\"System-Navigation\",\"panelIndex\":3,\"row\":1,\"size_x\":3,\"size_y\":4,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Container-Memory-stats\",\"panelIndex\":4,\"row\":5,\"size_x\":12,\"size_y\":3,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Container-Block-IO\",\"panelIndex\":5,\"row\":8,\"size_x\":12,\"size_y\":4,\"type\":\"visualization\"}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-Apache-HTTPD-server-status.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-Apache-HTTPD-server-status.json deleted file mode 100644 index 75ea73a1..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-Apache-HTTPD-server-status.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "optionsJSON": "{\"darkTheme\":false}", - "timeRestore": false, - "description": "", - "hits": 0, - "title": "Metricbeat - Apache HTTPD server status", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"query\":\"*\",\"analyze_wildcard\":true}}}]}" - }, - "version": 1, - "panelsJSON": "[{\"id\":\"Apache-HTTPD-CPU\",\"type\":\"visualization\",\"panelIndex\":1,\"size_x\":6,\"size_y\":3,\"col\":7,\"row\":10},{\"id\":\"Apache-HTTPD-Hostname-list\",\"type\":\"visualization\",\"panelIndex\":2,\"size_x\":3,\"size_y\":3,\"col\":1,\"row\":1},{\"id\":\"Apache-HTTPD-Load1-slash-5-slash-15\",\"type\":\"visualization\",\"panelIndex\":3,\"size_x\":6,\"size_y\":3,\"col\":1,\"row\":10},{\"id\":\"Apache-HTTPD-Scoreboard\",\"type\":\"visualization\",\"panelIndex\":4,\"size_x\":12,\"size_y\":3,\"col\":1,\"row\":7},{\"id\":\"Apache-HTTPD-Total-accesses-and-kbytes\",\"type\":\"visualization\",\"panelIndex\":5,\"size_x\":6,\"size_y\":3,\"col\":7,\"row\":1},{\"id\":\"Apache-HTTPD-Uptime\",\"type\":\"visualization\",\"panelIndex\":6,\"size_x\":3,\"size_y\":3,\"col\":4,\"row\":1},{\"id\":\"Apache-HTTPD-Workers\",\"type\":\"visualization\",\"panelIndex\":7,\"size_x\":12,\"size_y\":3,\"col\":1,\"row\":4}]", - "uiStateJSON": "{\"P-2\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}}" -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-Docker.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-Docker.json deleted file mode 100644 index 0e964a29..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-Docker.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "Metricbeat Docker", - "uiStateJSON": "{\"P-1\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":1,\"direction\":\"asc\"}}}},\"P-3\":{\"vis\":{\"legendOpen\":true}},\"P-5\":{\"vis\":{\"legendOpen\":true}},\"P-7\":{\"vis\":{\"legendOpen\":true}}}", - "panelsJSON": "[{\"col\":1,\"id\":\"Docker-containers\",\"panelIndex\":1,\"row\":1,\"size_x\":7,\"size_y\":5,\"type\":\"visualization\"},{\"col\":8,\"id\":\"Docker-Number-of-Containers\",\"panelIndex\":2,\"row\":1,\"size_x\":5,\"size_y\":2,\"type\":\"visualization\"},{\"col\":8,\"id\":\"Docker-containers-per-host\",\"panelIndex\":3,\"row\":3,\"size_x\":2,\"size_y\":3,\"type\":\"visualization\"},{\"col\":10,\"id\":\"Docker-images-and-names\",\"panelIndex\":7,\"row\":3,\"size_x\":3,\"size_y\":3,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Docker-CPU-usage\",\"panelIndex\":4,\"row\":6,\"size_x\":6,\"size_y\":3,\"type\":\"visualization\"},{\"col\":7,\"id\":\"Docker-memory-usage\",\"panelIndex\":5,\"row\":6,\"size_x\":6,\"size_y\":3,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Docker-Network-IO\",\"panelIndex\":6,\"row\":9,\"size_x\":12,\"size_y\":3,\"type\":\"visualization\"}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-MongoDB.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-MongoDB.json deleted file mode 100644 index 3494b335..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-MongoDB.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "Metricbeat MongoDB", - "uiStateJSON": "{\"P-1\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}}", - "panelsJSON": "[{\"col\":1,\"id\":\"MongoDB-hosts\",\"panelIndex\":1,\"row\":1,\"size_x\":8,\"size_y\":3,\"type\":\"visualization\"},{\"col\":9,\"id\":\"MongoDB-Engine-ampersand-Version\",\"panelIndex\":4,\"row\":1,\"size_x\":4,\"size_y\":3,\"type\":\"visualization\"},{\"col\":1,\"id\":\"MongoDB-operation-counters\",\"panelIndex\":2,\"row\":4,\"size_x\":6,\"size_y\":3,\"type\":\"visualization\"},{\"col\":7,\"id\":\"MongoDB-Concurrent-transactions-Read\",\"panelIndex\":6,\"row\":4,\"size_x\":3,\"size_y\":3,\"type\":\"visualization\"},{\"col\":10,\"id\":\"MongoDB-Concurrent-transactions-Write\",\"panelIndex\":7,\"row\":4,\"size_x\":3,\"size_y\":3,\"type\":\"visualization\"},{\"col\":1,\"id\":\"MongoDB-memory-stats\",\"panelIndex\":5,\"row\":10,\"size_x\":12,\"size_y\":4,\"type\":\"visualization\"},{\"col\":7,\"id\":\"MongoDB-asserts\",\"panelIndex\":3,\"row\":7,\"size_x\":6,\"size_y\":3,\"type\":\"visualization\"},{\"id\":\"MongoDB-WiredTiger-Cache\",\"type\":\"visualization\",\"panelIndex\":8,\"size_x\":6,\"size_y\":3,\"col\":1,\"row\":7}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-Redis.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-Redis.json deleted file mode 100644 index 62210f8b..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-Redis.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "Metricbeat: Redis", - "uiStateJSON": "{\"P-3\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}},\"P-4\":{\"vis\":{\"legendOpen\":true}}}", - "panelsJSON": "[{\"col\":1,\"id\":\"Redis-Clients-Metrics\",\"panelIndex\":2,\"row\":1,\"size_x\":3,\"size_y\":3,\"type\":\"visualization\"},{\"col\":4,\"id\":\"Redis-Connected-clients\",\"panelIndex\":1,\"row\":1,\"size_x\":5,\"size_y\":3,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Redis-hosts\",\"panelIndex\":3,\"row\":4,\"size_x\":12,\"size_y\":2,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Redis-Server-Versions\",\"panelIndex\":4,\"row\":6,\"size_x\":4,\"size_y\":2,\"type\":\"visualization\"},{\"col\":5,\"id\":\"Redis-server-mode\",\"panelIndex\":5,\"row\":6,\"size_x\":4,\"size_y\":2,\"type\":\"visualization\"},{\"col\":9,\"id\":\"Redis-multiplexing-API\",\"panelIndex\":6,\"row\":6,\"size_x\":3,\"size_y\":2,\"type\":\"visualization\"},{\"id\":\"Redis-Keyspaces\",\"type\":\"visualization\",\"panelIndex\":7,\"size_x\":4,\"size_y\":3,\"col\":9,\"row\":1}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-cpu.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-cpu.json deleted file mode 100644 index addfef84..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-cpu.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "Metricbeat-cpu", - "uiStateJSON": "{\"P-9\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}}", - "panelsJSON": "[{\"col\":1,\"id\":\"System-Navigation\",\"panelIndex\":2,\"row\":1,\"size_x\":2,\"size_y\":3,\"type\":\"visualization\"},{\"col\":1,\"id\":\"CPU-usage-over-time\",\"panelIndex\":4,\"row\":4,\"size_x\":6,\"size_y\":5,\"type\":\"visualization\"},{\"col\":9,\"id\":\"System-load\",\"panelIndex\":6,\"row\":1,\"size_x\":4,\"size_y\":3,\"type\":\"visualization\"},{\"col\":7,\"id\":\"System-Load-over-time\",\"panelIndex\":8,\"row\":4,\"size_x\":6,\"size_y\":5,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Top-hosts-by-CPU-usage\",\"panelIndex\":9,\"row\":9,\"size_x\":12,\"size_y\":5,\"type\":\"visualization\"},{\"col\":3,\"id\":\"CPU-Usage\",\"panelIndex\":10,\"row\":1,\"size_x\":6,\"size_y\":3,\"type\":\"visualization\"}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-filesystem-per-Host.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-filesystem-per-Host.json deleted file mode 100644 index 51869dd0..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-filesystem-per-Host.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "Metricbeat filesystem per Host", - "uiStateJSON": "{\"P-1\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}}", - "panelsJSON": "[{\"col\":1,\"id\":\"Top-disks-by-memory-usage\",\"panelIndex\":1,\"row\":6,\"size_x\":12,\"size_y\":5,\"type\":\"visualization\"},{\"col\":7,\"id\":\"Disk-utilization-over-time\",\"panelIndex\":2,\"row\":1,\"size_x\":6,\"size_y\":5,\"type\":\"visualization\"},{\"col\":1,\"id\":\"System-Navigation\",\"panelIndex\":3,\"row\":1,\"size_x\":3,\"size_y\":3,\"type\":\"visualization\"},{\"col\":4,\"id\":\"Disk-space-distribution\",\"panelIndex\":5,\"row\":1,\"size_x\":3,\"size_y\":5,\"type\":\"visualization\"}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-filesystem.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-filesystem.json deleted file mode 100644 index d5ed85b0..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-filesystem.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "Metricbeat-filesystem", - "uiStateJSON": "{\"P-5\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}}", - "panelsJSON": "[{\"col\":1,\"id\":\"System-Navigation\",\"panelIndex\":1,\"row\":1,\"size_x\":2,\"size_y\":4,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Top-hosts-by-disk-size\",\"panelIndex\":5,\"row\":10,\"size_x\":12,\"size_y\":4,\"type\":\"visualization\"},{\"col\":4,\"id\":\"Disk-space-overview\",\"panelIndex\":6,\"row\":1,\"size_x\":9,\"size_y\":4,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Free-disk-space-over-days\",\"panelIndex\":7,\"row\":5,\"size_x\":6,\"size_y\":5,\"type\":\"visualization\"},{\"col\":7,\"id\":\"Total-files-over-days\",\"panelIndex\":8,\"row\":5,\"size_x\":6,\"size_y\":5,\"type\":\"visualization\"}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-memory.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-memory.json deleted file mode 100644 index ae084177..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-memory.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "Metricbeat-memory", - "uiStateJSON": "{\"P-7\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":1,\"direction\":\"desc\"}}}}}", - "panelsJSON": "[{\"col\":1,\"id\":\"System-Navigation\",\"panelIndex\":1,\"row\":1,\"size_x\":2,\"size_y\":3,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Top-hosts-by-memory-usage\",\"panelIndex\":7,\"row\":9,\"size_x\":12,\"size_y\":5,\"type\":\"visualization\"},{\"col\":7,\"id\":\"Memory-usage-over-time\",\"panelIndex\":10,\"row\":4,\"size_x\":6,\"size_y\":5,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Swap-usage-over-time\",\"panelIndex\":11,\"row\":4,\"size_x\":6,\"size_y\":5,\"type\":\"visualization\"},{\"col\":3,\"id\":\"Total-Memory\",\"panelIndex\":12,\"row\":1,\"size_x\":2,\"size_y\":3,\"type\":\"visualization\"},{\"col\":5,\"id\":\"Available-Memory\",\"panelIndex\":13,\"row\":1,\"size_x\":2,\"size_y\":3,\"type\":\"visualization\"},{\"col\":7,\"id\":\"Memory-usage\",\"panelIndex\":14,\"row\":1,\"size_x\":3,\"size_y\":3,\"type\":\"visualization\"},{\"col\":10,\"id\":\"Swap-usage\",\"panelIndex\":15,\"row\":1,\"size_x\":3,\"size_y\":3,\"type\":\"visualization\"}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-network.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-network.json deleted file mode 100644 index 3c5300f7..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-network.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "Metricbeat-network", - "uiStateJSON": "{\"P-6\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}}", - "panelsJSON": "[{\"col\":1,\"id\":\"In-vs-Out-Network-Bytes\",\"panelIndex\":5,\"row\":4,\"size_x\":6,\"size_y\":5,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Top-10-interfaces\",\"panelIndex\":6,\"row\":9,\"size_x\":12,\"size_y\":6,\"type\":\"visualization\"},{\"col\":9,\"id\":\"Network-Packetloss\",\"panelIndex\":13,\"row\":1,\"size_x\":4,\"size_y\":3,\"type\":\"visualization\"},{\"col\":7,\"id\":\"Packet-loss-on-interfaces\",\"panelIndex\":22,\"row\":4,\"size_x\":6,\"size_y\":5,\"type\":\"visualization\"},{\"col\":1,\"id\":\"System-Navigation\",\"panelIndex\":23,\"row\":1,\"size_x\":2,\"size_y\":3,\"type\":\"visualization\"},{\"col\":3,\"id\":\"Network-Bytes\",\"panelIndex\":24,\"row\":1,\"size_x\":5,\"size_y\":3,\"type\":\"visualization\"}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-overview.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-overview.json deleted file mode 100644 index a920e58e..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-overview.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "Metricbeat-overview", - "uiStateJSON": "{\"P-1\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}}", - "panelsJSON": "[{\"id\":\"Servers-overview\",\"type\":\"visualization\",\"panelIndex\":1,\"size_x\":9,\"size_y\":5,\"col\":4,\"row\":1},{\"id\":\"System-Navigation\",\"type\":\"visualization\",\"panelIndex\":2,\"size_x\":3,\"size_y\":4,\"col\":1,\"row\":1}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"query\":\"*\",\"analyze_wildcard\":true}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-processes.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-processes.json deleted file mode 100644 index 4baac0d3..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-processes.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "Metricbeat-processes", - "uiStateJSON": "{\"P-1\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}},\"P-4\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}}", - "panelsJSON": "[{\"col\":1,\"id\":\"System-Navigation\",\"panelIndex\":5,\"row\":1,\"size_x\":3,\"size_y\":3,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Number-of-processes\",\"panelIndex\":7,\"row\":4,\"size_x\":3,\"size_y\":3,\"type\":\"visualization\"},{\"col\":4,\"id\":\"Process-state-by-host\",\"panelIndex\":9,\"row\":1,\"size_x\":5,\"size_y\":3,\"type\":\"visualization\"},{\"col\":9,\"id\":\"Number-of-processes-by-host\",\"panelIndex\":8,\"row\":1,\"size_x\":4,\"size_y\":3,\"type\":\"visualization\"},{\"col\":1,\"id\":\"CPU-usage-per-process\",\"panelIndex\":2,\"row\":7,\"size_x\":6,\"size_y\":8,\"type\":\"visualization\"},{\"col\":7,\"id\":\"Memory-usage-per-process\",\"panelIndex\":3,\"row\":7,\"size_x\":6,\"size_y\":8,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Top-processes-by-memory-usage\",\"panelIndex\":1,\"row\":15,\"size_x\":6,\"size_y\":11,\"type\":\"visualization\"},{\"col\":7,\"id\":\"Top-processes-by-CPU-usage\",\"panelIndex\":4,\"row\":15,\"size_x\":6,\"size_y\":11,\"type\":\"visualization\"},{\"id\":\"Number-of-processes-over-time\",\"type\":\"visualization\",\"panelIndex\":10,\"size_x\":9,\"size_y\":3,\"col\":4,\"row\":4}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-system-overview.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-system-overview.json deleted file mode 100644 index 06b39111..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/dashboard/Metricbeat-system-overview.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "hits": 0, - "timeRestore": false, - "description": "", - "title": "Metricbeat system overview", - "uiStateJSON": "{\"P-14\":{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}}", - "panelsJSON": "[{\"col\":1,\"id\":\"Network-Bytes\",\"panelIndex\":2,\"row\":6,\"size_x\":8,\"size_y\":2,\"type\":\"visualization\"},{\"col\":9,\"id\":\"Network-Packetloss\",\"panelIndex\":3,\"row\":6,\"size_x\":4,\"size_y\":2,\"type\":\"visualization\"},{\"col\":1,\"id\":\"System-Navigation\",\"panelIndex\":9,\"row\":1,\"size_x\":3,\"size_y\":3,\"type\":\"visualization\"},{\"col\":1,\"id\":\"Total-Memory\",\"panelIndex\":11,\"row\":4,\"size_x\":2,\"size_y\":2,\"type\":\"visualization\"},{\"col\":3,\"id\":\"Available-Memory\",\"panelIndex\":12,\"row\":4,\"size_x\":2,\"size_y\":2,\"type\":\"visualization\"},{\"col\":1,\"id\":\"System-overview-by-host\",\"panelIndex\":14,\"row\":8,\"size_x\":12,\"size_y\":6,\"type\":\"visualization\"},{\"col\":5,\"id\":\"System-load\",\"panelIndex\":15,\"row\":1,\"size_x\":8,\"size_y\":3,\"type\":\"visualization\"},{\"col\":5,\"id\":\"CPU-Usage\",\"panelIndex\":16,\"row\":4,\"size_x\":8,\"size_y\":2,\"type\":\"visualization\"}]", - "optionsJSON": "{\"darkTheme\":false}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}}}]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Apache-HTTPD.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Apache-HTTPD.json deleted file mode 100644 index b5c733a9..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Apache-HTTPD.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "description": "", - "hits": 0, - "columns": [ - "_source" - ], - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"query\":{\"query_string\":{\"query\":\"metricset.module: apache\",\"analyze_wildcard\":true}},\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647}}" - }, - "sort": [ - "@timestamp", - "desc" - ], - "title": "Apache HTTPD", - "version": 1 -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Cpu-Load-stats.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Cpu-Load-stats.json deleted file mode 100644 index 558a77db..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Cpu-Load-stats.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "Cpu-Load stats", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"query\":{\"query_string\":{\"query\":\"metricset.module: system AND (metricset.name: cpu OR metricset.name: load)\",\"analyze_wildcard\":true}},\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647}}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Cpu-stats.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Cpu-stats.json deleted file mode 100644 index 824bab4f..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Cpu-stats.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "Cpu stats", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"query\":{\"query_string\":{\"query\":\"metricset.module: system AND metricset.name: cpu\",\"analyze_wildcard\":true}},\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647}}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Filesystem-stats.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Filesystem-stats.json deleted file mode 100644 index 56a8cc17..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Filesystem-stats.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "Filesystem stats", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"metricset.module: system AND metricset.name: filesystem\",\"analyze_wildcard\":true}}}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Fsstats.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Fsstats.json deleted file mode 100644 index cbcf7ea0..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Fsstats.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "Fsstats", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"metricset.module: system AND metricset.name: fsstat\",\"analyze_wildcard\":true}}}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Load-stats.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Load-stats.json deleted file mode 100644 index 8c708d18..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Load-stats.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "Load stats", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"query\":{\"query_string\":{\"query\":\"metricset.module: system AND metricset.name: load\",\"analyze_wildcard\":true}},\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647}}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Memory-stats.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Memory-stats.json deleted file mode 100644 index f1a525ee..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Memory-stats.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "Memory stats", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"metricset.module: system AND metricset.name: memory\",\"analyze_wildcard\":true}}}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Metricbeat-Docker.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Metricbeat-Docker.json deleted file mode 100644 index 2ec00aa1..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Metricbeat-Docker.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "Metricbeat Docker", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"metricset.module:docker\",\"analyze_wildcard\":true}}}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Metricbeat-Redis.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Metricbeat-Redis.json deleted file mode 100644 index 397359b7..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Metricbeat-Redis.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "Metricbeat Redis", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"metricset.module:redis\",\"analyze_wildcard\":true}}}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/MongoDB-search.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/MongoDB-search.json deleted file mode 100644 index 2dce8d73..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/MongoDB-search.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "MongoDB search", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"metricset.module:mongodb\"}},\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647}}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Network-data.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Network-data.json deleted file mode 100644 index 14902385..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Network-data.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "Network data", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"metricset.module: system AND metricset.name: network\"}},\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647}}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Process-stats.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Process-stats.json deleted file mode 100644 index cbf7d522..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/Process-stats.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "Process stats", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"query\":{\"query_string\":{\"query\":\"metricset.name: process\",\"analyze_wildcard\":true}},\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"filter\":[]}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/System-stats.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/System-stats.json deleted file mode 100644 index 6040fef7..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/search/System-stats.json +++ /dev/null @@ -1,16 +0,0 @@ -{ - "sort": [ - "@timestamp", - "desc" - ], - "hits": 0, - "description": "", - "title": "System stats", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"filter\":[],\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"metricset.module: system\",\"analyze_wildcard\":true}}}" - }, - "columns": [ - "_source" - ] -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-CPU.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-CPU.json deleted file mode 100644 index 01581603..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-CPU.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "description": "", - "uiStateJSON": "{}", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\n \"filter\": []\n}" - }, - "savedSearchId": "Apache-HTTPD", - "visState": "{\n \"title\": \"Apache HTTPD - CPU\",\n \"type\": \"line\",\n \"params\": {\n \"shareYAxis\": true,\n \"addTooltip\": true,\n \"addLegend\": true,\n \"showCircles\": true,\n \"smoothLines\": false,\n \"interpolate\": \"linear\",\n \"scale\": \"linear\",\n \"drawLinesBetweenPoints\": true,\n \"radiusRatio\": 9,\n \"times\": [],\n \"addTimeMarker\": false,\n \"defaultYExtents\": false,\n \"setYExtents\": false,\n \"yAxis\": {}\n },\n \"aggs\": [\n {\n \"id\": \"1\",\n \"type\": \"avg\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"apache.status.cpu.load\",\n \"customLabel\": \"CPU load\"\n }\n },\n {\n \"id\": \"2\",\n \"type\": \"date_histogram\",\n \"schema\": \"segment\",\n \"params\": {\n \"field\": \"@timestamp\",\n \"interval\": \"auto\",\n \"customInterval\": \"2h\",\n \"min_doc_count\": 1,\n \"extended_bounds\": {}\n }\n },\n {\n \"id\": \"3\",\n \"type\": \"terms\",\n \"schema\": \"split\",\n \"params\": {\n \"field\": \"apache.status.hostname\",\n \"size\": 5,\n \"order\": \"desc\",\n \"orderBy\": \"1\",\n \"row\": true\n }\n },\n {\n \"id\": \"4\",\n \"type\": \"avg\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"apache.status.cpu.user\",\n \"customLabel\": \"CPU user\"\n }\n },\n {\n \"id\": \"5\",\n \"type\": \"avg\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"apache.status.cpu.system\",\n \"customLabel\": \"CPU system\"\n }\n },\n {\n \"id\": \"6\",\n \"type\": \"avg\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"apache.status.cpu.children_user\",\n \"customLabel\": \"CPU children user\"\n }\n },\n {\n \"id\": \"7\",\n \"type\": \"avg\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"apache.status.cpu.children_system\",\n \"customLabel\": \"CPU children system\"\n }\n }\n ],\n \"listeners\": {}\n}", - "title": "Apache HTTPD - CPU", - "version": 1 -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Hostname-list.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Hostname-list.json deleted file mode 100644 index 24daeab6..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Hostname-list.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "description": "", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - }, - "savedSearchId": "Apache-HTTPD", - "visState": "{\"title\":\"Apache HTTPD - Hostname list\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null}},\"aggs\":[{\"id\":\"1\",\"type\":\"count\",\"schema\":\"metric\",\"params\":{\"customLabel\":\"Events count\"}},{\"id\":\"2\",\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"apache.status.hostname\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Apache HTTD Hostname\"}}],\"listeners\":{}}", - "title": "Apache HTTPD - Hostname list", - "version": 1 -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Load1-slash-5-slash-15.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Load1-slash-5-slash-15.json deleted file mode 100644 index 470886ca..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Load1-slash-5-slash-15.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "description": "", - "uiStateJSON": "{}", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - }, - "savedSearchId": "Apache-HTTPD", - "visState": "{\"title\":\"Apache HTTPD - Load1/5/15\",\"type\":\"line\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"showCircles\":true,\"smoothLines\":false,\"interpolate\":\"linear\",\"scale\":\"linear\",\"drawLinesBetweenPoints\":true,\"radiusRatio\":9,\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.load.5\",\"customLabel\":\"Load 5\"}},{\"id\":\"2\",\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.load.1\",\"customLabel\":\"Load 1\"}},{\"id\":\"4\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.load.15\",\"customLabel\":\"Load 15\"}},{\"id\":\"5\",\"type\":\"terms\",\"schema\":\"split\",\"params\":{\"field\":\"apache.status.hostname\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Hostname\",\"row\":true}}],\"listeners\":{}}", - "title": "Apache HTTPD - Load1/5/15", - "version": 1 -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Scoreboard.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Scoreboard.json deleted file mode 100644 index 4c5b3a3e..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Scoreboard.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "description": "", - "uiStateJSON": "{}", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - }, - "savedSearchId": "Apache-HTTPD", - "visState": "{\"title\":\"Apache HTTPD - Scoreboard\",\"type\":\"line\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"showCircles\":true,\"smoothLines\":false,\"interpolate\":\"linear\",\"scale\":\"linear\",\"drawLinesBetweenPoints\":true,\"radiusRatio\":9,\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.closing_connection\",\"customLabel\":\"Closing connection\"}},{\"id\":\"2\",\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"type\":\"terms\",\"schema\":\"split\",\"params\":{\"field\":\"apache.status.hostname\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Hostname\",\"row\":true}},{\"id\":\"4\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.dns_lookup\",\"customLabel\":\"DNS lookup\"}},{\"id\":\"5\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.gracefully_finishing\",\"customLabel\":\"Gracefully finishing\"}},{\"id\":\"6\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.idle_cleanup\",\"customLabel\":\"Idle cleanup\"}},{\"id\":\"7\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.keepalive\",\"customLabel\":\"Keepalive\"}},{\"id\":\"8\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.logging\",\"customLabel\":\"Logging\"}},{\"id\":\"9\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.open_slot\",\"customLabel\":\"Open slot\"}},{\"id\":\"10\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.reading_request\",\"customLabel\":\"Reading request\"}},{\"id\":\"11\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.sending_reply\",\"customLabel\":\"Sending reply\"}},{\"id\":\"12\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.starting_up\",\"customLabel\":\"Starting up\"}},{\"id\":\"13\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.total\",\"customLabel\":\"Total\"}},{\"id\":\"14\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.scoreboard.waiting_for_connection\",\"customLabel\":\"Waiting for connection\"}}],\"listeners\":{}}", - "title": "Apache HTTPD - Scoreboard", - "version": 1 -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Total-accesses-and-kbytes.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Total-accesses-and-kbytes.json deleted file mode 100644 index 0656a1e0..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Total-accesses-and-kbytes.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "description": "", - "uiStateJSON": "{}", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - }, - "savedSearchId": "Apache-HTTPD", - "visState": "{\"title\":\"Apache HTTPD - Total accesses and kbytes\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":60},\"aggs\":[{\"id\":\"1\",\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.total_kbytes\",\"customLabel\":\"Total kbytes\"}},{\"id\":\"2\",\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"apache.status.total_accesses\",\"customLabel\":\"Total accesses\"}}],\"listeners\":{}}", - "title": "Apache HTTPD - Total accesses and kbytes", - "version": 1 -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Uptime.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Uptime.json deleted file mode 100644 index d228e660..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Uptime.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "description": "", - "uiStateJSON": "{}", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\n \"filter\": []\n}" - }, - "savedSearchId": "Apache-HTTPD", - "visState": "{\n \"title\": \"Apache HTTPD - Uptime\",\n \"type\": \"metric\",\n \"params\": {\n \"handleNoResults\": true,\n \"fontSize\": 60\n },\n \"aggs\": [\n {\n \"id\": \"1\",\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"apache.status.uptime.uptime\",\n \"customLabel\": \"Uptime\"\n }\n },\n {\n \"id\": \"2\",\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"apache.status.uptime.server_uptime\",\n \"customLabel\": \"Server uptime\"\n }\n }\n ],\n \"listeners\": {}\n}", - "title": "Apache HTTPD - Uptime", - "version": 1 -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Workers.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Workers.json deleted file mode 100644 index 570d61bc..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Apache-HTTPD-Workers.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "description": "", - "uiStateJSON": "{}", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\n \"filter\": []\n}" - }, - "savedSearchId": "Apache-HTTPD", - "visState": "{\n \"title\": \"Apache HTTPD - Workers\",\n \"type\": \"line\",\n \"params\": {\n \"shareYAxis\": true,\n \"addTooltip\": true,\n \"addLegend\": true,\n \"showCircles\": true,\n \"smoothLines\": false,\n \"interpolate\": \"linear\",\n \"scale\": \"linear\",\n \"drawLinesBetweenPoints\": true,\n \"radiusRatio\": 9,\n \"times\": [],\n \"addTimeMarker\": false,\n \"defaultYExtents\": false,\n \"setYExtents\": false,\n \"yAxis\": {}\n },\n \"aggs\": [\n {\n \"id\": \"1\",\n \"type\": \"avg\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"apache.status.workers.busy\",\n \"customLabel\": \"Busy workers\"\n }\n },\n {\n \"id\": \"2\",\n \"type\": \"date_histogram\",\n \"schema\": \"segment\",\n \"params\": {\n \"field\": \"@timestamp\",\n \"interval\": \"auto\",\n \"customInterval\": \"2h\",\n \"min_doc_count\": 1,\n \"extended_bounds\": {}\n }\n },\n {\n \"id\": \"3\",\n \"type\": \"terms\",\n \"schema\": \"split\",\n \"params\": {\n \"field\": \"apache.status.hostname\",\n \"size\": 5,\n \"order\": \"desc\",\n \"orderBy\": \"1\",\n \"customLabel\": \"Hostname\",\n \"row\": true\n }\n },\n {\n \"id\": \"4\",\n \"type\": \"avg\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"apache.status.workers.idle\",\n \"customLabel\": \"Idle workers\"\n }\n }\n ],\n \"listeners\": {}\n}", - "title": "Apache HTTPD - Workers", - "version": 1 -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Available-Memory.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Available-Memory.json deleted file mode 100644 index f7f66b7b..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Available-Memory.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Available Memory\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"30\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.actual.free\",\"customLabel\":\"Available Memory\"}}],\"listeners\":{}}", - "description": "", - "title": "Available Memory", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Memory-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/CPU-Usage.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/CPU-Usage.json deleted file mode 100644 index 399b1b65..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/CPU-Usage.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"CPU Usage\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"30\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.cpu.idle.pct\",\"customLabel\":\"idle\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.cpu.system.pct\",\"customLabel\":\"sys\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.cpu.user.pct\",\"customLabel\":\"user\"}}],\"listeners\":{}}", - "description": "", - "title": "CPU Usage", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Cpu-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/CPU-usage-over-time.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/CPU-usage-over-time.json deleted file mode 100644 index 26420320..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/CPU-usage-over-time.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"CPU usage over time\",\"type\":\"line\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"showCircles\":true,\"smoothLines\":false,\"interpolate\":\"linear\",\"scale\":\"linear\",\"drawLinesBetweenPoints\":true,\"radiusRatio\":9,\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.cpu.user.pct\",\"customLabel\":\"CPU user space\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.cpu.system.pct\",\"customLabel\":\"CPU kernel space\"}}],\"listeners\":{}}", - "description": "", - "title": "CPU usage over time", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Cpu-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/CPU-usage-per-process.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/CPU-usage-per-process.json deleted file mode 100644 index 0894cbcd..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/CPU-usage-per-process.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"CPU usage per process\",\"type\":\"area\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"smoothLines\":false,\"scale\":\"linear\",\"interpolate\":\"linear\",\"mode\":\"stacked\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{},\"legendPosition\":\"right\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cpu.total.pct\",\"customLabel\":\"CPU usage\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"system.process.name\",\"size\":10,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"split\",\"params\":{\"field\":\"beat.name\",\"size\":2,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Host\",\"row\":true}}],\"listeners\":{}}", - "description": "", - "title": "CPU usage per process", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Process-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Container-Block-IO.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Container-Block-IO.json deleted file mode 100644 index 1116e649..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Container-Block-IO.json +++ /dev/null @@ -1,10 +0,0 @@ -{ - "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Total\",\"field\":\"system.process.cgroup.blkio.total.bytes\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customLabel\":\"I/O\",\"field\":\"system.process.cgroup.blkio.total.ios\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Container ID\",\"field\":\"system.process.cgroup.id\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"},{\"enabled\":true,\"id\":\"4\",\"params\":{\"customLabel\":\"Process name\",\"field\":\"system.process.name\",\"order\":\"desc\",\"orderBy\":\"1\",\"size\":5},\"schema\":\"bucket\",\"type\":\"terms\"}],\"listeners\":{},\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\"},\"title\":\"Container Block IO\",\"type\":\"table\"}", - "description": "", - "title": "Container Block IO", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}},\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Container-CPU-usage.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Container-CPU-usage.json deleted file mode 100644 index 0fdff1d6..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Container-CPU-usage.json +++ /dev/null @@ -1,10 +0,0 @@ -{ - "visState": "{\"title\":\"Container CPU usage\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.cpuacct.stats.user.ns\",\"customLabel\":\"CPU user\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.cpu.cfs.quota.us\",\"customLabel\":\"CPU quota\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"system.process.cgroup.id\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Container ID\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.cpu.stats.throttled.ns\",\"customLabel\":\"CPU throttling\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.cpuacct.stats.system.ns\",\"customLabel\":\"CPU kernel\"}},{\"id\":\"6\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"system.process.name\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Process name\"}}],\"listeners\":{}}", - "description": "", - "title": "Container CPU usage", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"query\":{\"query_string\":{\"query\":\"*\",\"analyze_wildcard\":true}},\"filter\":[]}" - } -} diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Container-Memory-stats.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Container-Memory-stats.json deleted file mode 100644 index 37c54439..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Container-Memory-stats.json +++ /dev/null @@ -1,10 +0,0 @@ -{ - "visState": "{\"title\":\"Container Memory stats\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"13\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.mem.usage.bytes\",\"customLabel\":\"Usage\"}},{\"id\":\"14\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.mem.usage.max.bytes\",\"customLabel\":\"Max usage\"}},{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.stats.page_faults\",\"customLabel\":\"Page faults\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.stats.pages_in\",\"customLabel\":\"Pages in memory\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.stats.pages_out\",\"customLabel\":\"Pages out of memory\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"system.process.cgroup.id\",\"size\":50,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Container ID\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.stats.inactive_file.bytes\",\"customLabel\":\"Inactive files\"}},{\"id\":\"6\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.stats.major_page_faults\",\"customLabel\":\"# Major page faults\"}},{\"id\":\"8\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"system.process.name\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Process name\"}},{\"id\":\"12\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.mem.failures\",\"customLabel\":\"Failures\"}},{\"id\":\"10\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.kmem_tcp.usage.bytes\",\"customLabel\":\"TCP buffers\"}},{\"id\":\"11\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.stats.rss_huge.bytes\",\"customLabel\":\"Huge pages\"}},{\"id\":\"7\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.stats.rss.bytes\",\"customLabel\":\"Swap caches\"}},{\"id\":\"15\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.memory.stats.swap.bytes\",\"customLabel\":\"Swap usage\"}},{\"id\":\"16\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cgroup.blkio.total.ios\",\"customLabel\":\"Block I/O\"}}],\"listeners\":{}}", - "description": "", - "title": "Container Memory stats", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"index\":\"metricbeat-*\",\"query\":{\"query_string\":{\"query\":\"*\",\"analyze_wildcard\":true}},\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-space-distribution.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-space-distribution.json deleted file mode 100644 index a98057b0..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-space-distribution.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Disk space distribution\",\"type\":\"pie\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"isDonut\":false},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"sum\",\"schema\":\"metric\",\"params\":{\"field\":\"system.filesystem.total\",\"customLabel\":\"Total size\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"system.filesystem.mount_point\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Mount point\"}}],\"listeners\":{}}", - "description": "", - "title": "Disk space distribution", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Filesystem-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-space-overview.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-space-overview.json deleted file mode 100644 index 46b3e20a..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-space-overview.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Disk space overview\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"30\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.total_size.total\",\"customLabel\":\"Total disk space\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.total_size.used\",\"customLabel\":\"Used disk space\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.total_files\",\"customLabel\":\"Total files\"}}],\"listeners\":{}}", - "description": "", - "title": "Disk space overview", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Fsstats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-space.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-space.json deleted file mode 100644 index 023c3e9e..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-space.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Disk space\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"30\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.total_size.used\",\"customLabel\":\"Used disk space\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.total_size.total\",\"customLabel\":\"Total disk space\"}}],\"listeners\":{}}", - "description": "", - "title": "Disk space", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Fsstats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-utilization-over-time.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-utilization-over-time.json deleted file mode 100644 index 85315a3f..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Disk-utilization-over-time.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Disk utilization over time\",\"type\":\"area\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"smoothLines\":false,\"scale\":\"linear\",\"interpolate\":\"linear\",\"mode\":\"stacked\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.filesystem.used.pct\"}},{\"id\":\"2\",\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"system.filesystem.mount_point\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\"}},{\"id\":\"4\",\"type\":\"terms\",\"schema\":\"split\",\"params\":{\"field\":\"beat.name\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"row\":false}}],\"listeners\":{}}", - "description": "", - "title": "Disk utilization over time", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Filesystem-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-CPU-usage.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-CPU-usage.json deleted file mode 100644 index 35b1dc88..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-CPU-usage.json +++ /dev/null @@ -1,10 +0,0 @@ -{ - "visState": "{\n \"title\": \"Docker CPU usage\",\n \"type\": \"area\",\n \"params\": {\n \"addLegend\": true,\n \"addTimeMarker\": false,\n \"addTooltip\": true,\n \"defaultYExtents\": false,\n \"interpolate\": \"linear\",\n \"legendPosition\": \"top\",\n \"mode\": \"stacked\",\n \"scale\": \"linear\",\n \"setYExtents\": false,\n \"shareYAxis\": true,\n \"smoothLines\": true,\n \"times\": [],\n \"yAxis\": {}\n },\n \"aggs\": [\n {\n \"id\": \"1\",\n \"enabled\": true,\n \"type\": \"percentiles\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"docker.cpu.total.pct\",\n \"percents\": [\n 75\n ],\n \"customLabel\": \"Total CPU time\"\n }\n },\n {\n \"id\": \"2\",\n \"enabled\": true,\n \"type\": \"date_histogram\",\n \"schema\": \"segment\",\n \"params\": {\n \"field\": \"@timestamp\",\n \"interval\": \"auto\",\n \"customInterval\": \"2h\",\n \"min_doc_count\": 1,\n \"extended_bounds\": {}\n }\n },\n {\n \"id\": \"3\",\n \"enabled\": true,\n \"type\": \"terms\",\n \"schema\": \"group\",\n \"params\": {\n \"field\": \"docker.container.name\",\n \"size\": 5,\n \"order\": \"desc\",\n \"orderBy\": \"1.75\",\n \"customLabel\": \"Container name\"\n }\n }\n ],\n \"listeners\": {}\n}", - "description": "", - "title": "Docker CPU usage", - "uiStateJSON": "{}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\n \"filter\": [],\n \"index\": \"metricbeat-*\",\n \"highlight\": {\n \"pre_tags\": [\n \"@kibana-highlighted-field@\"\n ],\n \"post_tags\": [\n \"@/kibana-highlighted-field@\"\n ],\n \"fields\": {\n \"*\": {}\n },\n \"require_field_match\": false,\n \"fragment_size\": 2147483647\n },\n \"query\": {\n \"query_string\": {\n \"query\": \"metricset.module:docker AND metricset.name:cpu\",\n \"analyze_wildcard\": true\n }\n }\n}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-Network-IO.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-Network-IO.json deleted file mode 100644 index fa045598..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-Network-IO.json +++ /dev/null @@ -1,10 +0,0 @@ -{ - "visState": "{\"title\":\"Docker Network IO\",\"type\":\"area\",\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"interpolate\":\"linear\",\"legendPosition\":\"top\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":true,\"times\":[],\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"docker.network.in.bytes\",\"customLabel\":\"IN bytes\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"docker.container.name\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Container name\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"docker.network.out.bytes\",\"customLabel\":\"OUT bytes\"}}],\"listeners\":{}}", - "description": "", - "title": "Docker Network IO", - "uiStateJSON": "{}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[],\"index\":\"metricbeat-*\",\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"metricset.module:docker AND metricset.name:network\",\"analyze_wildcard\":true}}}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-Number-of-Containers.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-Number-of-Containers.json deleted file mode 100644 index 47d10416..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-Number-of-Containers.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Docker Number of Containers\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"36\"},\"aggs\":[{\"id\":\"2\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"docker.info.containers.running\",\"customLabel\":\"Running\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"docker.info.containers.paused\",\"customLabel\":\"Paused\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"docker.info.containers.stopped\",\"customLabel\":\"Stopped\"}}],\"listeners\":{}}", - "description": "", - "title": "Docker Number of Containers", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Metricbeat-Docker", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-containers-per-host.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-containers-per-host.json deleted file mode 100644 index 091aaee1..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-containers-per-host.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Docker containers per host\",\"type\":\"pie\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"bottom\",\"isDonut\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"cardinality\",\"schema\":\"metric\",\"params\":{\"field\":\"docker.container.id\",\"customLabel\":\"Number of containers\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"beat.hostname\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Hosts\"}}],\"listeners\":{}}", - "description": "", - "title": "Docker containers per host", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Metricbeat-Docker", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-containers.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-containers.json deleted file mode 100644 index ba3ec68f..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-containers.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\n \"title\": \"Docker containers\",\n \"type\": \"table\",\n \"params\": {\n \"perPage\": 8,\n \"showMeticsAtAllLevels\": false,\n \"showPartialRows\": false,\n \"showTotal\": true,\n \"sort\": {\n \"columnIndex\": null,\n \"direction\": null\n },\n \"totalFunc\": \"sum\"\n },\n \"aggs\": [\n {\n \"id\": \"2\",\n \"enabled\": true,\n \"type\": \"terms\",\n \"schema\": \"bucket\",\n \"params\": {\n \"field\": \"docker.container.name\",\n \"size\": 5,\n \"order\": \"desc\",\n \"orderBy\": \"1\",\n \"customLabel\": \"Name\"\n }\n },\n {\n \"id\": \"3\",\n \"enabled\": true,\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"docker.cpu.total.pct\",\n \"customLabel\": \"CPU usage (%)\"\n }\n },\n {\n \"id\": \"4\",\n \"enabled\": true,\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"docker.diskio.total\",\n \"customLabel\": \"DiskIO\"\n }\n },\n {\n \"id\": \"5\",\n \"enabled\": true,\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"docker.memory.usage.pct\",\n \"customLabel\": \"Mem (%)\"\n }\n },\n {\n \"id\": \"6\",\n \"enabled\": true,\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"docker.memory.rss.total\",\n \"customLabel\": \"Mem RSS\"\n }\n },\n {\n \"id\": \"1\",\n \"enabled\": true,\n \"type\": \"cardinality\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"docker.container.id\",\n \"customLabel\": \"Number of Containers\"\n }\n }\n ],\n \"listeners\": {}\n}", - "description": "", - "title": "Docker containers", - "uiStateJSON": "{\n \"vis\": {\n \"params\": {\n \"sort\": {\n \"columnIndex\": 1,\n \"direction\": \"asc\"\n }\n }\n }\n}", - "version": 1, - "savedSearchId": "Metricbeat-Docker", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\n \"filter\": []\n}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-images-and-names.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-images-and-names.json deleted file mode 100644 index 71a703e1..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-images-and-names.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Docker images and names\",\"type\":\"pie\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"bottom\",\"isDonut\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"count\",\"schema\":\"metric\",\"params\":{}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"docker.container.image\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"docker.container.name\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\"}}],\"listeners\":{}}", - "description": "", - "title": "Docker images and names", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Metricbeat-Docker", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-memory-usage.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-memory-usage.json deleted file mode 100644 index 12006940..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Docker-memory-usage.json +++ /dev/null @@ -1,10 +0,0 @@ -{ - "visState": "{\"title\":\"Docker memory usage\",\"type\":\"area\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"top\",\"smoothLines\":false,\"scale\":\"linear\",\"interpolate\":\"linear\",\"mode\":\"stacked\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"docker.memory.usage.total\",\"customLabel\":\"Memory\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"docker.container.name\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Container name\"}}],\"listeners\":{}}", - "description": "", - "title": "Docker memory usage", - "uiStateJSON": "{}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[],\"index\":\"metricbeat-*\",\"highlight\":{\"pre_tags\":[\"@kibana-highlighted-field@\"],\"post_tags\":[\"@/kibana-highlighted-field@\"],\"fields\":{\"*\":{}},\"require_field_match\":false,\"fragment_size\":2147483647},\"query\":{\"query_string\":{\"query\":\"metricset.module:docker AND metricset.name:memory\",\"analyze_wildcard\":true}}}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Free-disk-space-over-days.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Free-disk-space-over-days.json deleted file mode 100644 index 1a2efb99..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Free-disk-space-over-days.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Free disk space over days\",\"type\":\"histogram\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"scale\":\"linear\",\"mode\":\"stacked\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.total_size.free\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"d\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}}],\"listeners\":{}}", - "description": "", - "title": "Free disk space over days", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Fsstats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/In-vs-Out-Network-Bytes.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/In-vs-Out-Network-Bytes.json deleted file mode 100644 index 5025edee..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/In-vs-Out-Network-Bytes.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"In vs Out Network Bytes\",\"type\":\"line\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"showCircles\":true,\"smoothLines\":false,\"interpolate\":\"linear\",\"scale\":\"linear\",\"drawLinesBetweenPoints\":true,\"radiusRatio\":9,\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.in.bytes\",\"customLabel\":\"In Bytes\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.out.bytes\",\"customLabel\":\"Out Bytes\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}}],\"listeners\":{}}", - "description": "", - "title": "In vs Out Network Bytes", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Network-data", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Memory-usage-over-time.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Memory-usage-over-time.json deleted file mode 100644 index e52c5cc8..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Memory-usage-over-time.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Memory usage over time\",\"type\":\"area\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"smoothLines\":false,\"scale\":\"linear\",\"interpolate\":\"linear\",\"mode\":\"stacked\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.used.bytes\",\"customLabel\":\"Memory usage\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}}],\"listeners\":{}}", - "description": "", - "title": "Memory usage over time", - "uiStateJSON": "{\"vis\":{\"legendOpen\":true,\"colors\":{\"Used Memory\":\"#3F2B5B\",\"Memory usage\":\"#447EBC\"}}}", - "version": 1, - "savedSearchId": "Memory-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Memory-usage-per-process.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Memory-usage-per-process.json deleted file mode 100644 index db5b96a3..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Memory-usage-per-process.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Memory usage per process\",\"type\":\"area\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"smoothLines\":false,\"scale\":\"linear\",\"interpolate\":\"linear\",\"mode\":\"stacked\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{},\"legendPosition\":\"right\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.memory.rss.pct\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"system.process.name\",\"size\":10,\"order\":\"desc\",\"orderBy\":\"1\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"split\",\"params\":{\"field\":\"beat.name\",\"size\":2,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Host\",\"row\":true}}],\"listeners\":{}}", - "description": "", - "title": "Memory usage per process", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Process-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Memory-usage.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Memory-usage.json deleted file mode 100644 index 48a82f9b..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Memory-usage.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Memory usage\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"30\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.used.bytes\",\"customLabel\":\"Memory usage\"}}],\"listeners\":{}}", - "description": "", - "title": "Memory usage", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Memory-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-Concurrent-transactions-Read.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-Concurrent-transactions-Read.json deleted file mode 100644 index 6405e06c..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-Concurrent-transactions-Read.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"MongoDB Concurrent transactions Read\",\"type\":\"area\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"bottom\",\"smoothLines\":false,\"scale\":\"linear\",\"interpolate\":\"linear\",\"mode\":\"stacked\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.read.available\",\"customLabel\":\"Read Available\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.read.out\",\"customLabel\":\"Read Used\"}}],\"listeners\":{}}", - "description": "", - "title": "MongoDB Concurrent transactions Read", - "uiStateJSON": "{\"vis\":{\"colors\":{\"Read Available\":\"#508642\",\"Read Used\":\"#BF1B00\"}}}", - "version": 1, - "savedSearchId": "MongoDB-search", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-Concurrent-transactions-Write.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-Concurrent-transactions-Write.json deleted file mode 100644 index 0067899f..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-Concurrent-transactions-Write.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"Write Available\",\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.write.available\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customInterval\":\"2h\",\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"},{\"enabled\":true,\"id\":\"3\",\"params\":{\"customLabel\":\"Write Used\",\"field\":\"mongodb.status.wired_tiger.concurrent_transactions.write.out\"},\"schema\":\"metric\",\"type\":\"avg\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"interpolate\":\"linear\",\"legendPosition\":\"bottom\",\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{}},\"title\":\"MongoDB Concurrent transactions Write\",\"type\":\"area\"}", - "description": "", - "title": "MongoDB Concurrent transactions Write", - "uiStateJSON": "{\"vis\":{\"colors\":{\"Write Available\":\"#629E51\",\"Write Used\":\"#BF1B00\"}}}", - "version": 1, - "savedSearchId": "MongoDB-search", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-Engine-ampersand-Version.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-Engine-ampersand-Version.json deleted file mode 100644 index 1f713d18..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-Engine-ampersand-Version.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"MongoDB Engine & Version\",\"type\":\"pie\",\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":true,\"legendPosition\":\"bottom\",\"shareYAxis\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"cardinality\",\"schema\":\"metric\",\"params\":{\"field\":\"metricset.host\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"mongodb.status.storage_engine.name\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Engine\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"mongodb.status.version\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Version\"}}],\"listeners\":{}}", - "description": "", - "title": "MongoDB Engine & Version", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "MongoDB-search", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-WiredTiger-Cache.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-WiredTiger-Cache.json deleted file mode 100644 index b5e023de..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-WiredTiger-Cache.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"MongoDB WiredTiger Cache\",\"type\":\"area\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"bottom\",\"smoothLines\":false,\"scale\":\"linear\",\"interpolate\":\"linear\",\"mode\":\"overlap\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.wired_tiger.cache.maximum.bytes\",\"customLabel\":\"max\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.wired_tiger.cache.used.bytes\",\"customLabel\":\"used\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.wired_tiger.cache.dirty.bytes\",\"customLabel\":\"dirty\"}}],\"listeners\":{}}", - "description": "", - "title": "MongoDB WiredTiger Cache", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "MongoDB-search", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-asserts.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-asserts.json deleted file mode 100644 index d6a543d0..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-asserts.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"MongoDB asserts\",\"type\":\"area\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"bottom\",\"smoothLines\":false,\"scale\":\"linear\",\"interpolate\":\"linear\",\"mode\":\"stacked\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.asserts.msg\",\"customLabel\":\"message\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.asserts.regular\",\"customLabel\":\"regular\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.asserts.rollovers\",\"customLabel\":\"rollover\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.asserts.user\",\"customLabel\":\"user\"}},{\"id\":\"6\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.asserts.warning\",\"customLabel\":\"warning\"}}],\"listeners\":{}}", - "description": "", - "title": "MongoDB asserts", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "MongoDB-search", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-hosts.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-hosts.json deleted file mode 100644 index 6f2a4cad..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-hosts.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"MongoDB hosts\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.connections.current\",\"customLabel\":\"Number of connections\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"metricset.host\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.memory.bits\",\"customLabel\":\"Arch\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.memory.resident.mb\",\"customLabel\":\"Resident memory\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.memory.virtual.mb\",\"customLabel\":\"Virtual memory\"}}],\"listeners\":{}}", - "description": "", - "title": "MongoDB hosts", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "savedSearchId": "MongoDB-search", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-memory-stats.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-memory-stats.json deleted file mode 100644 index 28bbfa14..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-memory-stats.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"MongoDB memory stats\",\"type\":\"line\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"bottom\",\"showCircles\":true,\"smoothLines\":false,\"interpolate\":\"linear\",\"scale\":\"log\",\"drawLinesBetweenPoints\":true,\"radiusRatio\":9,\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.memory.mapped.mb\",\"customLabel\":\"Mapped\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.memory.mapped_with_journal.mb\",\"customLabel\":\"Mapped with journal\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.memory.resident.mb\",\"customLabel\":\"Rezident\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.memory.virtual.mb\",\"customLabel\":\"Virtual\"}}],\"listeners\":{}}", - "description": "", - "title": "MongoDB memory stats", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "MongoDB-search", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-operation-counters.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-operation-counters.json deleted file mode 100644 index 1a1c62f4..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/MongoDB-operation-counters.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"MongoDB operation counters\",\"type\":\"area\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"bottom\",\"smoothLines\":false,\"scale\":\"linear\",\"interpolate\":\"linear\",\"mode\":\"stacked\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.opcounters.command\",\"customLabel\":\"command\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.opcounters.delete\",\"customLabel\":\"delete\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.opcounters.getmore\",\"customLabel\":\"getmore\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.opcounters.insert\",\"customLabel\":\"insert\"}},{\"id\":\"6\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.opcounters.query\",\"customLabel\":\"query\"}},{\"id\":\"7\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"mongodb.status.opcounters_replicated.update\",\"customLabel\":\"update\"}}],\"listeners\":{}}", - "description": "", - "title": "MongoDB operation counters", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "MongoDB-search", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Network-Bytes.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Network-Bytes.json deleted file mode 100644 index 2eeb061f..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Network-Bytes.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Network Bytes\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"30\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.in.bytes\",\"customLabel\":\"In\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.out.bytes\",\"customLabel\":\"Out\"}}],\"listeners\":{}}", - "description": "", - "title": "Network Bytes", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Network-data", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Network-Packetloss.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Network-Packetloss.json deleted file mode 100644 index 3db1a452..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Network-Packetloss.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Network Packetloss\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"30\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.in.dropped\",\"customLabel\":\"In\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.out.dropped\",\"customLabel\":\"Out\"}}],\"listeners\":{}}", - "description": "", - "title": "Network Packetloss", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Network-data", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-Pids.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-Pids.json deleted file mode 100644 index 11ac41b9..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-Pids.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Number of Pids\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"40\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"cardinality\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.pid\",\"customLabel\":\"Pids\"}}],\"listeners\":{}}", - "description": "", - "title": "Number of Pids", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Process-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-processes-by-host.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-processes-by-host.json deleted file mode 100644 index d99aebd6..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-processes-by-host.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Number of processes by host\",\"type\":\"pie\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":false},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"cardinality\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.pid\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"beat.name\",\"size\":10,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Host\"}}],\"listeners\":{}}", - "description": "", - "title": "Number of processes by host", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Process-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-processes-over-time.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-processes-over-time.json deleted file mode 100644 index 97163273..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-processes-over-time.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Number of processes over time\",\"type\":\"line\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"showCircles\":true,\"smoothLines\":false,\"interpolate\":\"linear\",\"scale\":\"linear\",\"drawLinesBetweenPoints\":true,\"radiusRatio\":9,\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"cardinality\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.pid\",\"customLabel\":\"Number of processes\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}}],\"listeners\":{}}", - "description": "", - "title": "Number of processes over time", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Process-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-processes.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-processes.json deleted file mode 100644 index 45223027..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Number-of-processes.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Number of processes\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"40\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"cardinality\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.name\",\"customLabel\":\"Number of Processes\"}}],\"listeners\":{}}", - "description": "", - "title": "Number of processes", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Process-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Packet-loss-on-interfaces.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Packet-loss-on-interfaces.json deleted file mode 100644 index 4b9c20b4..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Packet-loss-on-interfaces.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Packet loss on interfaces\",\"type\":\"histogram\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"scale\":\"linear\",\"mode\":\"stacked\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.in.dropped\",\"customLabel\":\"In packet loss\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"system.network.name\",\"size\":10,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Interface\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.out.dropped\",\"customLabel\":\"Out packet loss\"}}],\"listeners\":{}}", - "description": "", - "title": "Packet loss on interfaces", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Network-data", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Process-state-by-host.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Process-state-by-host.json deleted file mode 100644 index cd29e58f..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Process-state-by-host.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Process state by host\",\"type\":\"pie\",\"params\":{\"addLegend\":true,\"addTooltip\":true,\"isDonut\":false,\"legendPosition\":\"right\",\"shareYAxis\":true},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"cardinality\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.pid\",\"customLabel\":\"\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"beat.name\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Host\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"system.process.state\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Process state\"}}],\"listeners\":{}}", - "description": "", - "title": "Process state by host", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Process-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Clients-Metrics.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Clients-Metrics.json deleted file mode 100644 index 74327ef4..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Clients-Metrics.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Redis Clients Metrics\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":60},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"redis.info.clients.connected\",\"customLabel\":\"Connected clients\"}}],\"listeners\":{}}", - "description": "", - "title": "Redis Clients Metrics", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Metricbeat-Redis", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Connected-clients.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Connected-clients.json deleted file mode 100644 index e41b7d62..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Connected-clients.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Redis Connected clients\",\"type\":\"histogram\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"scale\":\"linear\",\"mode\":\"grouped\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"redis.info.clients.connected\",\"customLabel\":\"Connected\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"redis.info.clients.blocked\",\"customLabel\":\"Blocked\"}}],\"listeners\":{}}", - "description": "", - "title": "Redis Connected clients", - "uiStateJSON": "{\"vis\":{\"colors\":{\"Blocked\":\"#C15C17\"}}}", - "version": 1, - "savedSearchId": "Metricbeat-Redis", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Keyspaces.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Keyspaces.json deleted file mode 100644 index f3a24610..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Keyspaces.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Redis Keyspaces\",\"type\":\"area\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"smoothLines\":false,\"scale\":\"linear\",\"interpolate\":\"linear\",\"mode\":\"stacked\",\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"redis.keyspace.keys\",\"customLabel\":\"Number of keys\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}},{\"id\":\"3\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"group\",\"params\":{\"field\":\"redis.keyspace.id\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Keyspaces\"}}],\"listeners\":{}}", - "description": "", - "title": "Redis Keyspaces", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Metricbeat-Redis", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Server-Versions.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Server-Versions.json deleted file mode 100644 index 404f87f2..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-Server-Versions.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Redis Server Versions\",\"type\":\"pie\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":false},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"cardinality\",\"schema\":\"metric\",\"params\":{\"field\":\"metricset.host\",\"customLabel\":\"Hosts\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"redis.info.server.version\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Multiplexing API\"}}],\"listeners\":{}}", - "description": "", - "title": "Redis Server Versions", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Metricbeat-Redis", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-hosts.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-hosts.json deleted file mode 100644 index 5f606405..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-hosts.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Redis hosts\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"metricset.host\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"redis.info.server.uptime\",\"customLabel\":\"Uptime (s)\"}},{\"id\":\"6\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"redis.info.server.process_id\",\"customLabel\":\"PID\"}},{\"id\":\"1\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"redis.info.memory.used.peak\",\"customLabel\":\"Memory\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"redis.info.cpu.used.user\",\"customLabel\":\"CPU used (user)\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"redis.info.cpu.used.sys\",\"customLabel\":\"CPU used (system)\"}}],\"listeners\":{}}", - "description": "", - "title": "Redis hosts", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "savedSearchId": "Metricbeat-Redis", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-multiplexing-API.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-multiplexing-API.json deleted file mode 100644 index 97a8732f..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-multiplexing-API.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Redis multiplexing API\",\"type\":\"pie\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":false},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"cardinality\",\"schema\":\"metric\",\"params\":{\"field\":\"metricset.host\",\"customLabel\":\"Hosts\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"redis.info.server.multiplexing_api\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Multiplexing API\"}}],\"listeners\":{}}", - "description": "", - "title": "Redis multiplexing API", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Metricbeat-Redis", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-server-mode.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-server-mode.json deleted file mode 100644 index f0737ca9..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Redis-server-mode.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Redis server mode\",\"type\":\"pie\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"legendPosition\":\"right\",\"isDonut\":false},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"cardinality\",\"schema\":\"metric\",\"params\":{\"field\":\"metricset.host\",\"customLabel\":\"Hosts\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"segment\",\"params\":{\"field\":\"redis.info.server.mode\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Server mode\"}}],\"listeners\":{}}", - "description": "", - "title": "Redis server mode", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Metricbeat-Redis", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Servers-overview.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Servers-overview.json deleted file mode 100644 index 160ff9ab..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Servers-overview.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Servers overview\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.cpu.user.pct\",\"customLabel\":\"CPU user space\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.cpu.system.pct\",\"customLabel\":\"CPU kernel space\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.total\",\"customLabel\":\"Total memory\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.used.pct\",\"customLabel\":\"Used Memory (%)\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.used.bytes\",\"customLabel\":\"Used Memory\"}},{\"id\":\"6\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.actual.used.pct\",\"customLabel\":\"Available memory\"}},{\"id\":\"7\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"beat.name\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\"}}],\"listeners\":{}}", - "description": "", - "title": "Servers overview", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "savedSearchId": "System-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Swap-usage-over-time.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Swap-usage-over-time.json deleted file mode 100644 index 511b6149..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Swap-usage-over-time.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Swap usage over time\",\"type\":\"line\",\"params\":{\"shareYAxis\":true,\"addTooltip\":true,\"addLegend\":true,\"showCircles\":true,\"smoothLines\":false,\"interpolate\":\"linear\",\"scale\":\"linear\",\"drawLinesBetweenPoints\":true,\"radiusRatio\":9,\"times\":[],\"addTimeMarker\":false,\"defaultYExtents\":false,\"setYExtents\":false,\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.swap.used.bytes\",\"customLabel\":\"Swap usage\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"auto\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}}],\"listeners\":{}}", - "description": "", - "title": "Swap usage over time", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Memory-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Swap-usage.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Swap-usage.json deleted file mode 100644 index c74796fc..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Swap-usage.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Swap usage\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"30\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.swap.used.bytes\",\"customLabel\":\"Swap usage\"}}],\"listeners\":{}}", - "description": "", - "title": "Swap usage", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Memory-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-Load-over-time.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-Load-over-time.json deleted file mode 100644 index e508f0e7..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-Load-over-time.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"aggs\":[{\"enabled\":true,\"id\":\"1\",\"params\":{\"customLabel\":\"System Load\",\"field\":\"system.load.1\"},\"schema\":\"metric\",\"type\":\"avg\"},{\"enabled\":true,\"id\":\"2\",\"params\":{\"customInterval\":\"2h\",\"extended_bounds\":{},\"field\":\"@timestamp\",\"interval\":\"auto\",\"min_doc_count\":1},\"schema\":\"segment\",\"type\":\"date_histogram\"}],\"listeners\":{},\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"drawLinesBetweenPoints\":true,\"interpolate\":\"linear\",\"radiusRatio\":9,\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"showCircles\":true,\"smoothLines\":false,\"times\":[],\"yAxis\":{}},\"title\":\"System Load over time\",\"type\":\"line\"}", - "description": "", - "title": "System Load over time", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Load-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-Navigation.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-Navigation.json deleted file mode 100644 index 177f8cd0..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-Navigation.json +++ /dev/null @@ -1,10 +0,0 @@ -{ - "visState": "{\"title\":\"System Navigation\",\"type\":\"markdown\",\"params\":{\"markdown\":\"- [Overview](#/dashboard/Metricbeat-system-overview)\\n\\n- [Load/CPU](#/dashboard/Metricbeat-cpu)\\n\\n- [Memory](#/dashboard/Metricbeat-memory)\\n\\n- [Processes](#/dashboard/Metricbeat-processes)\\n\\n- [Network](#/dashboard/Metricbeat-network)\\n\\n- [Filesystem](#/dashboard/Metricbeat-filesystem)\\n\\n- [Filesystem per Host](#/dashboard/Metricbeat-filesystem-per-Host)\\n\\n- [CPU/Memory per container](#/dashboard/CPU-slash-Memory-per-container)\"},\"aggs\":[],\"listeners\":{}}", - "description": "", - "title": "System Navigation", - "uiStateJSON": "{}", - "version": 1, - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"query\":{\"query_string\":{\"analyze_wildcard\":true,\"query\":\"*\"}},\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-load.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-load.json deleted file mode 100644 index 074086be..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-load.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"System Load\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"40\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.load.norm.1\",\"customLabel\":\"Load/cores last min\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.load.norm.5\",\"customLabel\":\"Load/cores last 5 mins\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.load.norm.15\",\"customLabel\":\"Load/cores last 15mins\"}}],\"listeners\":{}}", - "description": "", - "title": "System Load", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Load-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-overview-by-host.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-overview-by-host.json deleted file mode 100644 index eb8658c3..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/System-overview-by-host.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"System overview by host\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.used.pct\",\"customLabel\":\"Used memory\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"beat.name\",\"size\":50,\"order\":\"desc\",\"orderBy\":\"_term\",\"customLabel\":\"Host\"}},{\"id\":\"8\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.total\",\"customLabel\":\"Total memory\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.total_size.used\",\"customLabel\":\"Used disk space\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.load.norm.1\",\"customLabel\":\"System load / cores\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.cpu.user.pct\",\"customLabel\":\"CPU usage\"}},{\"id\":\"6\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.in.dropped\",\"customLabel\":\"In dropped\"}},{\"id\":\"7\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.out.dropped\",\"customLabel\":\"Out dropped\"}}],\"listeners\":{}}", - "description": "", - "title": "System overview by host", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "savedSearchId": "System-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-10-interfaces.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-10-interfaces.json deleted file mode 100644 index e9582d3d..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-10-interfaces.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Top 10 interfaces\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.in.bytes\",\"customLabel\":\"In Bytes\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"system.network.name\",\"size\":10,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Interface\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.out.bytes\",\"customLabel\":\"Out Bytes\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.in.errors\",\"customLabel\":\"In Errors\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.out.errors\",\"customLabel\":\"Out Errors\"}},{\"id\":\"6\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.in.dropped\",\"customLabel\":\"In Packet loss\"}},{\"id\":\"7\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.network.out.dropped\",\"customLabel\":\"Out Packet loss\"}}],\"listeners\":{}}", - "description": "", - "title": "Top 10 interfaces", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "savedSearchId": "Network-data", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-disks-by-memory-usage.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-disks-by-memory-usage.json deleted file mode 100644 index 2d1872ce..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-disks-by-memory-usage.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Top disks by memory usage\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showMeticsAtAllLevels\":false,\"showPartialRows\":false,\"showTotal\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.filesystem.available\",\"customLabel\":\"Available disk space\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"system.filesystem.mount_point\",\"size\":5,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Mount point\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.filesystem.total\",\"customLabel\":\"Total disk space\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.filesystem.used.bytes\",\"customLabel\":\"Used disk space\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.filesystem.used.pct\",\"customLabel\":\"Used disk space (%)\"}},{\"id\":\"6\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.filesystem.files\",\"customLabel\":\"Files\"}}],\"listeners\":{}}", - "description": "", - "title": "Top disks by memory usage", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "savedSearchId": "Filesystem-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-hosts-by-CPU-usage.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-hosts-by-CPU-usage.json deleted file mode 100644 index 1b1ac4de..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-hosts-by-CPU-usage.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\n \"title\": \"Top hosts by CPU usage\",\n \"type\": \"table\",\n \"params\": {\n \"perPage\": 10,\n \"showPartialRows\": false,\n \"showMeticsAtAllLevels\": false,\n \"sort\": {\n \"columnIndex\": null,\n \"direction\": null\n },\n \"showTotal\": false,\n \"totalFunc\": \"sum\"\n },\n \"aggs\": [\n {\n \"id\": \"1\",\n \"enabled\": true,\n \"type\": \"avg\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"system.cpu.user.pct\",\n \"customLabel\": \"Used memory\"\n }\n },\n {\n \"id\": \"2\",\n \"enabled\": true,\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"system.load.1\",\n \"customLabel\": \"Load last min\"\n }\n },\n {\n \"id\": \"3\",\n \"enabled\": true,\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"system.load.5\",\n \"customLabel\": \"Load last 5 mins\"\n }\n },\n {\n \"id\": \"4\",\n \"enabled\": true,\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"system.load.15\",\n \"customLabel\": \"Load last 15 mins\"\n }\n },\n {\n \"id\": \"5\",\n \"enabled\": true,\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"system.load.norm.1\",\n \"customLabel\": \"Load/cores last min\"\n }\n },\n {\n \"id\": \"6\",\n \"enabled\": true,\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"system.load.norm.5\",\n \"customLabel\": \"Load/cores last 5 mins\"\n }\n },\n {\n \"id\": \"7\",\n \"enabled\": true,\n \"type\": \"max\",\n \"schema\": \"metric\",\n \"params\": {\n \"field\": \"system.load.norm.15\",\n \"customLabel\": \"Load/cores last 15 mins\"\n }\n },\n {\n \"id\": \"8\",\n \"enabled\": true,\n \"type\": \"terms\",\n \"schema\": \"bucket\",\n \"params\": {\n \"field\": \"beat.name\",\n \"size\": 50,\n \"order\": \"desc\",\n \"orderBy\": \"1\",\n \"customLabel\": \"Host\"\n }\n }\n ],\n \"listeners\": {}\n}", - "description": "", - "title": "Top hosts by CPU usage", - "uiStateJSON": "{\n \"vis\": {\n \"params\": {\n \"sort\": {\n \"columnIndex\": null,\n \"direction\": null\n }\n }\n }\n}", - "version": 1, - "savedSearchId": "Cpu-Load-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\n \"filter\": []\n}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-hosts-by-disk-size.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-hosts-by-disk-size.json deleted file mode 100644 index 3e7f4198..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-hosts-by-disk-size.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Top hosts by disk size\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.total_size.total\",\"customLabel\":\"Total size\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.total_size.used\",\"customLabel\":\"Used size\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.total_files\",\"customLabel\":\"Total files\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"max\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.count\",\"customLabel\":\"Max number of filesystems\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"beat.name\",\"size\":50,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Host\"}}],\"listeners\":{}}", - "description": "", - "title": "Top hosts by disk size", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "savedSearchId": "Fsstats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-hosts-by-memory-usage.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-hosts-by-memory-usage.json deleted file mode 100644 index 5cc053b7..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-hosts-by-memory-usage.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Top hosts by memory usage\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.total\",\"customLabel\":\"Total Memory\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.actual.used.bytes\",\"customLabel\":\"Memory usage\"}},{\"id\":\"7\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.actual.used.pct\",\"customLabel\":\"Memory usage (%)\"}},{\"id\":\"4\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.actual.free\",\"customLabel\":\"Available Memory\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"beat.name\",\"size\":50,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Host\"}},{\"id\":\"6\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.swap.used.bytes\",\"customLabel\":\"Swap usage\"}},{\"id\":\"3\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.swap.used.pct\",\"customLabel\":\"Swap usage (%)\"}}],\"listeners\":{}}", - "description": "", - "title": "Top hosts by memory usage", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "savedSearchId": "Memory-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-processes-by-CPU-usage.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-processes-by-CPU-usage.json deleted file mode 100644 index ef74eb62..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-processes-by-CPU-usage.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Top processes by CPU usage\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"7\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cpu.total.pct\",\"customLabel\":\"CPU (%)\"}},{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.memory.rss.pct\",\"customLabel\":\"Resident Memory\"}},{\"id\":\"8\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.memory.rss.bytes\",\"customLabel\":\"Memory\"}},{\"id\":\"9\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.memory.share\",\"customLabel\":\"Shared Memory\"}},{\"id\":\"10\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"split\",\"params\":{\"field\":\"beat.name\",\"size\":2,\"order\":\"desc\",\"orderBy\":\"7\",\"customLabel\":\"Host\",\"row\":true}},{\"id\":\"4\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"system.process.name\",\"size\":50,\"order\":\"desc\",\"orderBy\":\"7\",\"customLabel\":\"Process\"}}],\"listeners\":{}}", - "description": "", - "title": "Top processes by CPU usage", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "savedSearchId": "Process-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-processes-by-memory-usage.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-processes-by-memory-usage.json deleted file mode 100644 index 489aeb79..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Top-processes-by-memory-usage.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Top processes by memory usage\",\"type\":\"table\",\"params\":{\"perPage\":10,\"showPartialRows\":false,\"showMeticsAtAllLevels\":false,\"sort\":{\"columnIndex\":null,\"direction\":null},\"showTotal\":false,\"totalFunc\":\"sum\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.memory.rss.bytes\",\"customLabel\":\"Memory\"}},{\"id\":\"5\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.memory.share\",\"customLabel\":\"Shared Memory\"}},{\"id\":\"6\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.memory.rss.pct\",\"customLabel\":\"Resident Memory\"}},{\"id\":\"7\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.process.cpu.total.pct\",\"customLabel\":\"CPU (%)\"}},{\"id\":\"8\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"split\",\"params\":{\"field\":\"beat.name\",\"size\":2,\"order\":\"desc\",\"orderBy\":\"1\",\"customLabel\":\"Host\",\"row\":true}},{\"id\":\"4\",\"enabled\":true,\"type\":\"terms\",\"schema\":\"bucket\",\"params\":{\"field\":\"system.process.name\",\"size\":50,\"order\":\"desc\",\"orderBy\":\"1\"}}],\"listeners\":{}}", - "description": "", - "title": "Top processes by memory usage", - "uiStateJSON": "{\"vis\":{\"params\":{\"sort\":{\"columnIndex\":null,\"direction\":null}}}}", - "version": 1, - "savedSearchId": "Process-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Total-Memory.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Total-Memory.json deleted file mode 100644 index 3afa6076..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Total-Memory.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Total Memory\",\"type\":\"metric\",\"params\":{\"handleNoResults\":true,\"fontSize\":\"30\"},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.memory.total\",\"customLabel\":\"Total Memory\"}}],\"listeners\":{}}", - "description": "", - "title": "Total Memory", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Memory-stats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Total-files-over-days.json b/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Total-files-over-days.json deleted file mode 100644 index 0dad3519..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/_meta/kibana/visualization/Total-files-over-days.json +++ /dev/null @@ -1,11 +0,0 @@ -{ - "visState": "{\"title\":\"Total files over days\",\"type\":\"histogram\",\"params\":{\"addLegend\":true,\"addTimeMarker\":false,\"addTooltip\":true,\"defaultYExtents\":false,\"mode\":\"stacked\",\"scale\":\"linear\",\"setYExtents\":false,\"shareYAxis\":true,\"times\":[],\"yAxis\":{}},\"aggs\":[{\"id\":\"1\",\"enabled\":true,\"type\":\"avg\",\"schema\":\"metric\",\"params\":{\"field\":\"system.fsstat.total_files\"}},{\"id\":\"2\",\"enabled\":true,\"type\":\"date_histogram\",\"schema\":\"segment\",\"params\":{\"field\":\"@timestamp\",\"interval\":\"d\",\"customInterval\":\"2h\",\"min_doc_count\":1,\"extended_bounds\":{}}}],\"listeners\":{}}", - "description": "", - "title": "Total files over days", - "uiStateJSON": "{}", - "version": 1, - "savedSearchId": "Fsstats", - "kibanaSavedObjectMeta": { - "searchSourceJSON": "{\"filter\":[]}" - } -} \ No newline at end of file diff --git a/vendor/github.com/elastic/beats/metricbeat/docs/configuring-howto.asciidoc b/vendor/github.com/elastic/beats/metricbeat/docs/configuring-howto.asciidoc index 3cd8c7b6..8300e2e9 100644 --- a/vendor/github.com/elastic/beats/metricbeat/docs/configuring-howto.asciidoc +++ b/vendor/github.com/elastic/beats/metricbeat/docs/configuring-howto.asciidoc @@ -12,6 +12,10 @@ To configure {beatname_uc}, you edit the configuration file. For rpm and deb, yo +/etc/{beatname_lc}/{beatname_lc}.full.yml+ that shows all non-deprecated options. For mac and win, look in the archive that you extracted. +See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + The following topics describe how to configure Metricbeat: * <> diff --git a/vendor/github.com/elastic/beats/metricbeat/docs/developer-guide/creating-beat-from-metricbeat.asciidoc b/vendor/github.com/elastic/beats/metricbeat/docs/developer-guide/creating-beat-from-metricbeat.asciidoc index c35fd6db..c2b198cd 100644 --- a/vendor/github.com/elastic/beats/metricbeat/docs/developer-guide/creating-beat-from-metricbeat.asciidoc +++ b/vendor/github.com/elastic/beats/metricbeat/docs/developer-guide/creating-beat-from-metricbeat.asciidoc @@ -8,7 +8,7 @@ own metricsets. === Requirements To create your own Beat, you must have Golang {go-version} or later installed, and the `$GOPATH` -must be set up correctly. In addition, the following tools are quired: +must be set up correctly. In addition, the following tools are required: * https://www.python.org/downloads/[python] * https://virtualenv.pypa.io/en/stable/[virtualenv] diff --git a/vendor/github.com/elastic/beats/metricbeat/docs/gettingstarted.asciidoc b/vendor/github.com/elastic/beats/metricbeat/docs/gettingstarted.asciidoc index 6e17469b..cdc415ca 100644 --- a/vendor/github.com/elastic/beats/metricbeat/docs/gettingstarted.asciidoc +++ b/vendor/github.com/elastic/beats/metricbeat/docs/gettingstarted.asciidoc @@ -11,7 +11,7 @@ related products: * Kibana for the UI. * Logstash (optional) for inserting data into Elasticsearch. -See {libbeat}/getting-started.html[Getting Started with Beats and the Elastic Stack] for more information. +See {libbeat}/getting-started.html[Getting Started with Beats and the Elastic Stack] for more information. After installing the Elastic Stack, read the following topics to learn how to install, configure, and run Metricbeat: @@ -51,33 +51,71 @@ other installation options, such as 32-bit images. [[deb]] *deb:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ------------------------------------------------ curl -L -O https://artifacts.elastic.co/downloads/beats/metricbeat/metricbeat-{version}-amd64.deb sudo dpkg -i metricbeat-{version}-amd64.deb ------------------------------------------------ +endif::[] + [[rpm]] *rpm:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ------------------------------------------------ curl -L -O https://artifacts.elastic.co/downloads/beats/metricbeat/metricbeat-{version}-x86_64.rpm sudo rpm -vi metricbeat-{version}-x86_64.rpm ------------------------------------------------ +endif::[] + [[mac]] *mac:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ------------------------------------------------ curl -L -O https://artifacts.elastic.co/downloads/beats/metricbeat/metricbeat-{version}-darwin-x86_64.tar.gz tar xzvf metricbeat-{version}-darwin-x86_64.tar.gz ------------------------------------------------ +endif::[] + [[win]] *win:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + . Download the Metricbeat Windows zip file from the https://www.elastic.co/downloads/beats/metricbeat[downloads page]. @@ -102,6 +140,8 @@ execution policy for the current session to allow the script to run. For example: `PowerShell.exe -ExecutionPolicy UnRestricted -File .\install-service-metricbeat.ps1`. +endif::[] + Before starting Metricbeat, you should look at the configuration options in the configuration file, for example `C:\Program Files\Metricbeat\metricbeat.yml`. For more information about these options, see @@ -116,6 +156,10 @@ and win, look in the archive that you just extracted. There’s also a full example configuration file called `metricbeat.full.yml` that shows all non-deprecated options. +See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + Metricbeat uses <> to collect metrics. You configure each module individually. The following example shows the default configuration in the `metricbeat.yml` file. The system status module is enabled by default to @@ -135,7 +179,7 @@ metricbeat.modules: enabled: true period: 10s processes: ['.*'] - cpu_ticks: false + cpu_ticks: false ------------------------------------- The following example shows how to configure two modules: the system module @@ -154,7 +198,7 @@ metricbeat.modules: enabled: true period: 10s processes: ['.*'] - cpu_ticks: false + cpu_ticks: false - module: apache metricsets: ["status"] enabled: true @@ -215,8 +259,13 @@ sudo /etc/init.d/metricbeat start [source,shell] ---------------------------------------------------------------------- +sudo chown root metricbeat.yml <1> sudo ./metricbeat -e -c metricbeat.yml -d "publish" ---------------------------------------------------------------------- +<1> You'll be running Metricbeat as root, so you need to change ownership +of the configuration file (see +{libbeat}/config-file-permissions.html[Config File Ownership and Permissions] +in the _Beats Platform Reference_). *win:* @@ -259,3 +308,4 @@ image:./images/metricbeat_system_dashboard.png[Metricbeat Dashboard] :allplatforms: include::../../libbeat/docs/dashboards.asciidoc[] + diff --git a/vendor/github.com/elastic/beats/metricbeat/docs/index.asciidoc b/vendor/github.com/elastic/beats/metricbeat/docs/index.asciidoc index 536a76b0..9454e170 100644 --- a/vendor/github.com/elastic/beats/metricbeat/docs/index.asciidoc +++ b/vendor/github.com/elastic/beats/metricbeat/docs/index.asciidoc @@ -4,6 +4,7 @@ include::../../libbeat/docs/version.asciidoc[] :libbeat: http://www.elastic.co/guide/en/beats/libbeat/{doc-branch} :filebeat: http://www.elastic.co/guide/en/beats/filebeat/{doc-branch} +:logstashdoc: https://www.elastic.co/guide/en/logstash/{doc-branch} :elasticsearch: https://www.elastic.co/guide/en/elasticsearch/reference/{doc-branch} :securitydoc: https://www.elastic.co/guide/en/x-pack/5.2 :version: {stack-version} @@ -37,6 +38,7 @@ include::./configuring-logstash.asciidoc[] include::../../libbeat/docs/shared-env-vars.asciidoc[] +:standalone: :allplatforms: include::../../libbeat/docs/yaml.asciidoc[] diff --git a/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration.asciidoc b/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration.asciidoc index 1e7e48f6..5133ada7 100644 --- a/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration.asciidoc +++ b/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration.asciidoc @@ -4,7 +4,10 @@ Before modifying configuration settings, make sure you've completed the <> in the Getting Started. -The {beatname_uc} configuration file, +{beatname_lc}.yml+, uses http://yaml.org/[YAML] for its syntax. +The {beatname_uc} configuration file, +{beatname_lc}.yml+, uses http://yaml.org/[YAML] for its syntax. See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + The configuration options are described in the following sections. After changing configuration settings, you need to restart {beatname_uc} to pick up the changes. @@ -17,6 +20,7 @@ configuration settings, you need to restart {beatname_uc} to pick up the changes * <> * <> * <> +* <> * <> * <> * <> diff --git a/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration/metricbeat-options.asciidoc b/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration/metricbeat-options.asciidoc index 8521a9c0..199f4ab4 100644 --- a/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration/metricbeat-options.asciidoc +++ b/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration/metricbeat-options.asciidoc @@ -1,5 +1,5 @@ [[configuration-metricbeat]] -=== Modules Configuration +=== Modules The `metricbeat.modules` section of the +{beatname_lc}.yml+ config file contains an array with the enabled <>. The following example shows a configuration where the Apache and MySQL modules are enabled: diff --git a/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration/reload-configuration.asciidoc b/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration/reload-configuration.asciidoc index 362fdff9..21879e64 100644 --- a/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration/reload-configuration.asciidoc +++ b/vendor/github.com/elastic/beats/metricbeat/docs/reference/configuration/reload-configuration.asciidoc @@ -1,14 +1,22 @@ +[[metricbeat-configuration-reloading]] === Reload Configuration experimental[] -Reload configuration allows to dynamically reload module configuration files. A glob can be defined which should be watched - for module configuration changes. New modules will started / stopped accordingly. This is especially useful in - container environments where 1 container is used to monitor all services in other containers on the same host. - New containers appear and disappear dynamically which requires changes to which modules - are needed and which hosts must be monitored. +You can configure Metricbeat to dynamically reload configuration files when +there are changes. To do this, you specify a path +(https://golang.org/pkg/path/filepath/#Glob[Glob]) to watch for module +configuration changes. When the files found by the Glob change, new modules are +started/stopped according to changes in the configuration files. -The configuration in the main metricbeat.yml config file looks as following: +This feature is especially useful in container environments where one container +is used to monitor all services running in other containers on the same host. +Because new containers appear and disappear dynamically, you may need to change +the Metricbeat configuration frequently to specify which modules are needed and +which hosts must be monitored. + +To enable dynamic config reloading, you specify the `path` and `reload` options +in the main `metricbeat.yml` config file. For example: [source,yaml] ------------------------------------------------------------------------------ @@ -18,11 +26,16 @@ metricbeat.config.modules: reload.period: 10s ------------------------------------------------------------------------------ -A path with a glob must be defined on which files should be checked for changes. A period is set on how often -the files are checked for changes. Do not set period below 1s as the modification time of files is often stored in seconds. -Setting it below 1s will have an unnecessary overhead. +`path`:: A Glob that defines the files to check for changes. +`reload.enabled`:: When set to `true`, enables dynamic config reload. +`reload.period`:: Specifies how often the files are checked for changes. Do not +set the `period` to less than 1s because the modification time of files is often +stored in seconds. Setting the `period` to less than 1s will result in +unnecessary overhead. + +Each file found by the Glob must contain a list of one or more module +definitions. For example: -The configuration inside the files which are found by the glob look as following: [source,yaml] ------------------------------------------------------------------------------ - module: system @@ -35,5 +48,3 @@ The configuration inside the files which are found by the glob look as following enabled: true period: 10s ------------------------------------------------------------------------------ - -Each file directly contains a list of modules. Each file can contain one or multiple module definitions. diff --git a/vendor/github.com/elastic/beats/metricbeat/fields.yml b/vendor/github.com/elastic/beats/metricbeat/fields.yml deleted file mode 100644 index f6e3fac7..00000000 --- a/vendor/github.com/elastic/beats/metricbeat/fields.yml +++ /dev/null @@ -1,5122 +0,0 @@ - -- key: beat - title: Beat - description: > - Contains common beat fields available in all event types. - fields: - - - name: beat.name - description: > - The name of the Beat sending the log messages. If the Beat name is - set in the configuration file, then that value is used. If it is not - set, the hostname is used. To set the Beat name, use the `name` - option in the configuration file. - - name: beat.hostname - description: > - The hostname as returned by the operating system on which the Beat is - running. - - name: beat.timezone - description: > - The timezone as returned by the operating system on which the Beat is - running. - - name: beat.version - description: > - The version of the beat that generated this event. - - - name: "@timestamp" - type: date - required: true - format: date - example: August 26th 2016, 12:35:53.332 - description: > - The timestamp when the event log record was generated. - - - name: tags - description: > - Arbitrary tags that can be set per Beat and per transaction - type. - - - name: fields - type: object - object_type: keyword - description: > - Contains user configurable fields. - - - name: error - type: group - description: > - Error fields containing additional info in case of errors. - fields: - - name: message - type: text - description: > - Error message. - - name: code - type: long - description: > - Error code. - - name: type - type: keyword - description: > - Error type. -- key: cloud - title: Cloud Provider Metadata - description: > - Metadata from cloud providers added by the add_cloud_metadata processor. - fields: - - - name: meta.cloud.provider - example: ec2 - description: > - Name of the cloud provider. Possible values are ec2, gce, or digitalocean. - - - name: meta.cloud.instance_id - description: > - Instance ID of the host machine. - - - name: meta.cloud.machine_type - example: t2.medium - description: > - Machine type of the host machine. - - - name: meta.cloud.availability_zone - example: us-east-1c - description: > - Availability zone in which this host is running. - - - name: meta.cloud.project_id - example: project-x - description: > - Name of the project in Google Cloud. - - - name: meta.cloud.region - description: > - Region in which this host is running. -- key: common - title: Common - description: > - Contains common fields available in all event types. - fields: - - - name: metricset.module - description: > - The name of the module that generated the event. - - - name: metricset.name - description: > - The name of the metricset that generated the event. - - - name: metricset.host - description: > - Hostname of the machine from which the metricset was collected. This - field may not be present when the data was collected locally. - - - name: metricset.rtt - type: long - required: true - description: > - Event round trip time in microseconds. - - - name: metricset.namespace - type: keyword - description: > - Namespace of dynamic metricsets. - - - name: type - required: true - example: metricsets - description: > - The document type. Always set to "metricsets". - -- key: apache - title: "Apache" - description: > - Apache HTTPD server metricsets collected from the Apache web server. - short_config: false - fields: - - name: apache - type: group - description: > - `apache` contains the metrics that were scraped from Apache. - fields: - - name: status - type: group - description: > - `status` contains the metrics that were scraped from the Apache status page. - fields: - - name: hostname - type: keyword - description: > - Apache hostname. - - name: total_accesses - type: long - description: > - Total number of access requests. - - name: total_kbytes - type: long - description: > - Total number of kilobytes served. - - name: requests_per_sec - type: scaled_float - description: > - Requests per second. - - name: bytes_per_sec - type: scaled_float - description: > - Bytes per second. - - name: bytes_per_request - type: scaled_float - description: > - Bytes per request. - - name: workers.busy - type: long - description: > - Number of busy workers. - - name: workers.idle - type: long - description: > - Number of idle workers. - - name: uptime - type: group - description: > - Uptime stats. - fields: - - name: server_uptime - type: long - description: > - Server uptime in seconds. - - name: uptime - type: long - description: > - Server uptime. - - name: cpu - type: group - description: > - CPU stats. - fields: - - name: load - type: scaled_float - description: > - CPU Load. - - name: user - type: scaled_float - description: > - CPU user load. - - name: system - type: scaled_float - description: > - System cpu. - - name: children_user - type: scaled_float - description: > - CPU of children user. - - name: children_system - type: scaled_float - description: > - CPU of children system. - - name: connections - type: group - description: > - Connection stats. - fields: - - name: total - type: long - description: > - Total connections. - - name: async.writing - type: long - description: > - Async connection writing. - - name: async.keep_alive - type: long - description: > - Async keeped alive connections. - - name: async.closing - type: long - description: > - Async closed connections. - - name: load - type: group - description: > - Load averages. - fields: - - name: "1" - type: scaled_float - scaling_factor: 100 - description: > - Load average for the last minute. - - name: "5" - type: scaled_float - scaling_factor: 100 - description: > - Load average for the last 5 minutes. - - name: "15" - type: scaled_float - scaling_factor: 100 - description: > - Load average for the last 15 minutes. - - name: scoreboard - type: group - description: > - Scoreboard metrics. - fields: - - name: starting_up - type: long - description: > - Starting up. - - name: reading_request - type: long - description: > - Reading requests. - - name: sending_reply - type: long - description: > - Sending Reply. - - name: keepalive - type: long - description: > - Keep alive. - - name: dns_lookup - type: long - description: > - Dns Lookups. - - name: closing_connection - type: long - description: > - Closing connections. - - name: logging - type: long - description: > - Logging - - name: gracefully_finishing - type: long - description: > - Gracefully finishing. - - name: idle_cleanup - type: long - description: > - Idle cleanups. - - name: open_slot - type: long - description: > - Open slots. - - name: waiting_for_connection - type: long - description: > - Waiting for connections. - - name: total - type: long - description: > - Total. - -- key: ceph - title: "ceph" - description: > - beta[] - - ceph Module - short_config: false - fields: - - name: ceph - type: group - description: > - `ceph` contains the metrics that were scraped from CEPH. - fields: - - name: cluster_disk - type: group - description: > - cluster_disk - fields: - - name: available.bytes - type: long - description: > - Available bytes of the cluster - format: bytes - - name: total.bytes - type: long - description: > - Total bytes of the cluster - format: bytes - - name: used.bytes - type: long - description: > - Used bytes of the cluster - format: bytes - - - name: cluster_health - type: group - description: > - cluster_health - fields: - - name: overall_status - type: keyword - description: > - Overall status of the cluster - - name: timechecks.epoch - type: long - description: > - Map version - - name: timechecks.round.value - type: long - description: > - timecheck round - - name: timechecks.round.status - type: keyword - description: > - Status of the round - - - name: monitor_health - type: group - description: > - monitor_health stats data - fields: - - name: available.pct - type: long - description: > - Available percent of the MON - - name: health - type: keyword - description: > - Health of the MON - - name: available.kb - type: long - description: > - Available KB of the MON - - name: total.kb - type: long - description: > - Total KB of the MON - - name: used.kb - type: long - description: > - Used KB of the MON - - name: last_updated - type: date - description: > - Time when was updated - - name: name - type: keyword - description: > - Name of the MON - - name: store_stats.log.bytes - type: long - description: > - Log bytes of MON - format: bytes - - name: store_stats.misc.bytes - type: long - description: > - Misc bytes of MON - format: bytes - - name: store_stats.sst.bytes - type: long - description: > - SST bytes of MON - format: bytes - - name: store_stats.total.bytes - type: long - description: > - Total bytes of MON - format: bytes - - name: store_stats.last_updated - type: long - description: > - Last updated - - - name: pool_disk - type: group - description: > - pool_disk - fields: - - name: id - type: long - description: > - Id of the pool - - name: name - type: keyword - description: > - Name of the pool - - name: stats.available.bytes - type: long - description: > - Available bytes of the pool - format: bytes - - name: stats.objects - type: long - description: > - Number of objects of the pool - - name: stats.used.bytes - type: long - description: > - Used bytes of the pool - format: bytes - - name: stats.used.kb - type: long - description: > - Used kb of the pool - -- key: couchbase - title: "Couchbase" - description: > - beta[] - - Metrics collected from Couchbase servers. - short_config: false - fields: - - name: couchbase - type: group - description: > - `couchbase` contains the metrics that were scraped from Couchbase. - fields: - - name: bucket - type: group - description: > - Couchbase bucket metrics. - fields: - - name: name - type: keyword - description: > - Name of the bucket. - - name: type - type: keyword - description: > - Type of the bucket. - - name: data.used.bytes - format: bytes - type: long - description: > - Size of user data within buckets of the specified state that are resident in RAM. - - name: disk.fetches - type: long - description: > - Number of disk fetches. - - name: disk.used.bytes - format: bytes - type: long - description: > - Amount of disk used (bytes). - - name: memory.used.bytes - format: bytes - type: long - description: > - Amount of memory used by the bucket (bytes). - - name: quota.ram.bytes - format: bytes - type: long - description: > - Amount of RAM used by the bucket (bytes). - - name: quota.use.pct - format: percent - type: scaled_float - description: > - Percentage of RAM used (for active objects) against the configured bucket size (%). - - name: ops_per_sec - type: long - description: > - Number of operations per second. - - name: item_count - type: long - description: > - Number of items associated with the bucket. - - - name: cluster - type: group - description: > - Couchbase cluster metrics. - fields: - - name: hdd.free.bytes - format: bytes - type: long - description: > - Free hard drive space in the cluster (bytes). - - name: hdd.quota.total.bytes - format: bytes - type: long - description: > - Hard drive quota total for the cluster (bytes). - - name: hdd.total.bytes - format: bytes - type: long - description: > - Total hard drive space available to the cluster (bytes). - - name: hdd.used.value.bytes - format: bytes - type: long - description: > - Hard drive space used by the cluster (bytes). - - name: hdd.used.by_data.bytes - format: bytes - type: long - description: > - Hard drive space used by the data in the cluster (bytes). - - name: max_bucket_count - type: long - description: > - Max bucket count setting. - - name: quota.index_memory.mb - type: long - description: > - Memory quota setting for the Index service (Mbyte). - - name: quota.memory.mb - type: long - description: > - Memory quota setting for the cluster (Mbyte). - - name: ram.quota.total.value.bytes - format: bytes - type: long - description: > - RAM quota total for the cluster (bytes). - - name: ram.quota.total.per_node.bytes - format: bytes - type: long - description: > - RAM quota used by the current node in the cluster (bytes). - - name: ram.quota.used.value.bytes - format: bytes - type: long - description: > - RAM quota used by the cluster (bytes). - - name: ram.quota.used.per_node.bytes - format: bytes - type: long - description: > - Ram quota used by the current node in the cluster (bytes) - - name: ram.total.bytes - format: bytes - type: long - description: > - Total RAM available to cluster (bytes). - - name: ram.used.value.bytes - format: bytes - type: long - description: > - RAM used by the cluster (bytes). - - name: ram.used.by_data.bytes - format: bytes - type: long - description: > - RAM used by the data in the cluster (bytes). - - - name: node - type: group - description: > - Couchbase node metrics. - fields: - - name: cmd_get - type: long - description: > - Number of get commands - - name: couch.docs.disk_size.bytes - format: bytes - type: long - description: > - Amount of disk space used by Couch docs (bytes). - - name: couch.docs.data_size.bytes - format: bytes - type: long - description: > - Data size of Couch docs associated with a node (bytes). - - name: couch.spatial.data_size.bytes - type: long - description: > - Size of object data for spatial views (bytes). - - name: couch.spatial.disk_size.bytes - type: long - description: > - Amount of disk space used by spatial views (bytes). - - name: couch.views.disk_size.bytes - type: long - description: > - Amount of disk space used by Couch views (bytes). - - name: couch.views.data_size.bytes - type: long - description: > - Size of object data for Couch views (bytes). - - name: cpu_utilization_rate.pct - type: scaled_float - description: > - The CPU utilization rate (%). - - name: current_items.value - type: long - description: > - Number of current items. - - name: current_items.total - type: long - description: > - Total number of items associated with the node. - - name: ep_bg_fetched - type: long - description: > - Number of disk fetches performed since the server was started. - - name: get_hits - type: long - description: > - Number of get hits. - - name: hostname - type: keyword - description: > - The hostname of the node. - - name: mcd_memory.allocated.bytes - format: bytes - type: long - description: > - Amount of memcached memory allocated (bytes). - - name: mcd_memory.reserved.bytes - type: long - description: > - Amount of memcached memory reserved (bytes). - - name: memory.free.bytes - type: long - description: > - Amount of memory free for the node (bytes). - - name: memory.total.bytes - type: long - description: > - Total memory available to the node (bytes). - - name: memory.used.bytes - type: long - description: > - Memory used by the node (bytes). - - name: ops - type: long - description: > - Number of operations performed on Couchbase. - - name: swap.total.bytes - type: long - description: > - Total swap size allocated (bytes). - - name: swap.used.bytes - type: long - description: > - Amount of swap space used (bytes). - - name: uptime.sec - type: long - description: > - Time during which the node was in operation (sec). - - name: vb_replica_curr_items - type: long - description: > - Number of items/documents that are replicas. - -- key: docker - title: "Docker" - description: > - beta[] - - Docker stats collected from Docker. - short_config: false - fields: - - name: docker - type: group - description: > - Information and statistics about docker's running containers. - fields: - - name: container - type: group - description: > - Docker container metrics. - fields: - - name: command - type: keyword - description: > - Command that was executed in the Docker container. - - name: created - type: date - description: > - Date when the container was created. - - name: id - type: keyword - description: > - Unique container id. - - name: image - type: keyword - description: > - Name of the image the container was built on. - - name: name - type: keyword - description: > - Container name. - - name: status - type: keyword - description: > - Container status. - - name: size - type: group - description: > - Container size metrics. - fields: - - name: root_fs - type: long - description: > - Total size of all the files in the container. - - name: rw - type: long - description: > - Size of the files that have been created or changed since creation. - - name: labels - type: object - object_type: keyword - description: > - Image labels. - - name: tags - type: array - description: > - Image tags. - - - name: cpu - type: group - description: > - Runtime CPU metrics. - fields: - - name: kernel.pct - type: scaled_float - format: percentage - description: > - The system kernel consumed by the Docker server. - - name: kernel.ticks - type: long - description: > - CPU kernel ticks. - - name: system.pct - type: scaled_float - format: percentage - description: > - - name: system.ticks - type: long - description: > - CPU system ticks. - - name: user.pct - type: scaled_float - format: percentage - description: > - - name: user.ticks - type: long - description: > - CPU user ticks - - name: total.pct - type: scaled_float - format: percentage - description: > - Total CPU usage. - # TODO: how to document cpu list? - #- name: core - # type: array - # description: > - # Dictionary with list of cpu and usage inside. - - - name: diskio - type: group - description: > - Disk I/O metrics. - fields: - - name: reads - type: scaled_float - description: > - Number of reads. - - name: writes - type: scaled_float - description: > - Number of writes. - - name: total - type: scaled_float - description: > - Number of reads and writes combined. - - - name: healthcheck - type: group - description: > - Docker container metrics. - fields: - - name: failingstreak - type: integer - description: > - concurent failed check - - name: status - type: keyword - description: > - Healthcheck status code - - name: event - type: group - description: > - event fields. - fields: - - name: end_date - type: date - description: > - Healthcheck end date - - name: start_date - type: date - description: > - Healthcheck start date - - name: output - type: keyword - description: > - Healthcheck output - - name: exit_code - type: integer - description: > - Healthcheck status code - - - name: image - type: group - description: > - Docker image metrics. - fields: - - name: id - type: group - description: > - The image layers identifier. - fields: - - name: current - type: keyword - description: > - Unique image identifier given upon its creation. - - name: parent - type: keyword - description: > - Identifier of the image, if it exists, from which the current image directly descends. - - name: created - type: date - description: > - Date and time when the image was created. - - name: size - type: group - description: > - Image size layers. - fields: - - name: virtual - type: long - description: > - Size of the image. - - name: regular - type: long - description: > - Total size of the all cached images associated to the current image. - - - name: labels - type: object - object_type: keyword - description: > - Image labels. - - - name: tags - type: array - description: > - Image tags. - - - name: info - type: group - description: > - beta[] - - Info metrics based on https://docs.docker.com/engine/reference/api/docker_remote_api_v1.24/#/display-system-wide-information. - fields: - - name: containers - type: group - description: > - Overall container stats. - fields: - - name: paused - type: long - description: > - Total number of paused containers. - - name: running - type: long - description: > - Total number of running containers. - - name: stopped - type: long - description: > - Total number of stopped containers. - - name: total - type: long - description: > - Total number of existing containers. - - name: id - type: keyword - description: > - Unique Docker host identifier. - - - name: images - type: long - description: > - Total number of existing images. - - - name: memory - type: group - description: > - Memory metrics. - fields: - - - name: fail.count - type: scaled_float - description: > - Fail counter. - - name: limit - type: long - format: bytes - description: > - Memory limit. - - name: rss - type: group - description: > - RSS memory stats. - fields: - - name: total - type: long - format: bytes - description: > - Total memory resident set size. - - name: pct - type: scaled_float - description: > - Memory resident set size percentage. - - name: usage - type: group - description: > - Usage memory stats. - fields: - - name: max - type: long - format: bytes - description: > - Max memory usage. - - name: pct - type: scaled_float - description: > - Memory usage percentage. - - name: total - type: long - format: bytes - description: > - Total memory usage. - - - name: network - type: group - description: > - Network metrics. - fields: - - - name: interface - type: keyword - description: > - Network interface name. - - name: in - type: group - description: > - Incoming network stats. - fields: - - name: bytes - type: long - format: bytes - description: > - Total number of incoming bytes. - - name: dropped - type: scaled_float - description: > - Total number of dropped incoming packets. - - name: errors - type: long - description: > - Total errors on incoming packets. - - name: packets - type: long - description: > - Total number of incoming packets. - - name: out - type: group - description: > - Outgoing network stats. - fields: - - name: bytes - type: long - format: bytes - description: > - Total number of outgoing bytes. - - name: dropped - type: scaled_float - description: > - Total number of dropped outgoing packets. - - name: errors - type: long - description: > - Total errors on outgoing packets. - - name: packets - type: long - description: > - Total number of outgoing packets. - -- key: elasticsearch - title: "elasticsearch" - description: > - []experimental - - elasticsearch Module - short_config: false - fields: - - name: elasticsearch - type: group - description: > - fields: - - name: node - type: group - description: > - node - fields: - - name: jvm.memory.heap_init.bytes - type: long - format: bytes - description: > - Heap init used by the JVM in bytes. - - name: jvm.version - type: keyword - description: > - JVM version. - - name: name - type: keyword - description: > - Node name. - - name: version - type: keyword - description: > - Node version. - - - name: node_stats - type: group - description: > - node_stats - fields: - - name: name - type: keyword - description: > - Node name. - - name: jvm.mem.pools - type: group - description: > - JVM memory pool stats - fields: - - name: old - type: group - description: > - Old memory pool stats. - fields: - - name: max.bytes - type: long - format: bytes - description: - Max bytes. - - name: peak.bytes - type: long - format: bytes - description: - Peak bytes. - - name: peak_max.bytes - type: long - format: bytes - description: - Peak max bytes. - - name: used.bytes - type: long - format: bytes - description: - Used bytes. - - name: young - type: group - description: > - Young memory pool stats. - fields: - - name: max.bytes - type: long - format: bytes - description: - Max bytes. - - name: peak.bytes - type: long - format: bytes - description: - Peak bytes. - - name: peak_max.bytes - type: long - format: bytes - description: - Peak max bytes. - - name: used.bytes - type: long - format: bytes - description: - Used bytes. - - name: survivor - type: group - description: > - Survivor memory pool stats. - fields: - - name: max.bytes - type: long - format: bytes - description: - Max bytes. - - name: peak.bytes - type: long - format: bytes - description: - Peak bytes. - - name: peak_max.bytes - type: long - format: bytes - description: - Peak max bytes. - - name: used.bytes - type: long - format: bytes - description: - Used bytes. - - - name: stats - type: group - description: > - stats - fields: - - name: docs.count - type: long - description: > - Total number of existing documents. - - name: docs.deleted - type: long - description: > - Total number of deleted documents. - - name: segments.count - type: long - description: > - Total number of segments. - - name: segments.memory.bytes - type: long - format: bytes - description: > - Total size of segments in bytes. - - name: shards.failed - type: long - description: > - Number of failed shards. - - name: shards.successful - type: long - description: > - Number of successful shards. - - name: shards.total - type: long - description: > - Total number of shards. - - name: store.size.bytes - type: long - description: > - Total size of the store in bytes. - -- key: golang - title: "golang" - description: > - golang Module - short_config: false - fields: - - name: golang - type: group - description: > - fields: - - name: expvar - type: group - description: > - expvar - fields: - - name: cmdline - type: keyword - description: > - The cmdline of this golang program start with. - - name: heap - type: group - description: > - The golang program heap information exposed by expvar. - fields: - - name: cmdline - type: keyword - description: > - The cmdline of this golang program start with. - - - name: gc - type: group - description: > - Garbage collector summary. - fields: - - name: total_pause - type: group - description: > - Total GC pause duration over lifetime of process. - fields: - - name: ns - type: long - description: > - Duration in Ns. - - name: total_count - type: long - description: > - Total number of GC was happened. - - name: next_gc_limit - type: long - format: bytes - description: > - Next collection will happen when HeapAlloc > this amount. - - name: cpu_fraction - type: long - description: > - Fraction of CPU time used by GC. - - name: pause - type: group - description: > - Last GC pause durations during the monitoring period. - fields: - - name: count - type: long - description: > - Count of GC pause duration during this collect period. - - name: sum - type: group - description: > - Total GC pause duration during this collect period. - fields: - - name: ns - type: long - description: > - Duration in Ns. - - name: max - type: group - description: > - Max GC pause duration during this collect period. - fields: - - name: ns - type: long - description: > - Duration in Ns. - - name: avg - type: group - description: > - Average GC pause duration during this collect period. - fields: - - name: ns - type: long - description: > - Duration in Ns. - - - name: system - type: group - description: > - Heap summary,which bytes was obtained from system. - fields: - - name: total - type: long - format: bytes - description: > - Total bytes obtained from system (sum of XxxSys below). - - name: optained - type: long - format: bytes - description: > - Via HeapSys, bytes obtained from system. heap_sys = heap_idle + heap_inuse. - - name: stack - type: long - format: bytes - description: > - Bytes used by stack allocator, and these bytes was obtained from system. - - name: released - type: long - format: bytes - description: > - Bytes released to the OS. - - - name: allocations - type: group - description: > - Heap allocations summary. - fields: - - name: mallocs - type: long - description: > - Number of mallocs. - - name: frees - type: long - description: > - Number of frees. - - name: objects - type: long - description: > - Total number of allocated objects. - - name: total - type: long - format: bytes - description: > - Bytes allocated (even if freed) throughout the lifetime. - - name: allocated - type: long - format: bytes - description: > - Bytes allocated and not yet freed (same as Alloc above). - - name: idle - type: long - format: bytes - description: > - Bytes in idle spans. - - name: active - type: long - format: bytes - description: > - Bytes in non-idle span. -- key: haproxy - title: "HAProxy" - description: > - HAProxy Module - short_config: false - fields: - - name: haproxy - type: group - description: > - HAProxy metrics. - fields: - - name: info - type: group - description: > - General information about HAProxy processes. - fields: - - name: processes - type: long - description: > - Number of processes. - - - name: process_num - type: long - description: > - Process number. - - - name: pid - type: long - description: > - Process ID. - - - name: run_queue - type: long - description: > - - - name: tasks - type: long - description: > - - - name: uptime.sec - type: long - description: > - Current uptime in seconds. - - - name: memory.max.bytes - type: long - format: bytes - description: > - Maximum amount of memory usage in bytes (the 'Memmax_MB' value converted to bytes). - - - name: ulimit_n - type: long - description: > - Maximum number of open files for the process. - - - name: compress - type: group - description: > - - fields: - - name: bps - type: group - description: > - - fields: - - name: in - type: long - description: > - - - name: out - type: long - description: > - - - name: rate_limit - type: long - description: > - - - name: connection - type: group - description: > - - fields: - - name: rate - type: group - description: > - - fields: - - name: value - type: long - description: > - - - name: limit - type: long - description: > - - - name: max - type: long - description: > - - - name: current - type: long - description: > - Current connections. - - - name: total - type: long - description: > - Total connections. - - - name: ssl.current - type: long - description: > - Current SSL connections. - - - name: ssl.total - type: long - description: > - Total SSL connections. - - - name: ssl.max - type: long - description: > - Maximum SSL connections. - - - name: max - type: long - description: > - Maximum connections. - - - name: hard_max - type: long - description: > - - - name: requests.total - type: long - description: > - - - name: sockets.max - type: long - description: > - - - name: requests.max - type: long - description: > - - - name: pipes - type: group - description: > - fields: - - name: used - type: integer - description: > - - - name: free - type: integer - description: > - - - name: max - type: integer - description: > - - - name: session - type: group - description: - fields: - - name: rate.value - type: integer - description: > - - - name: rate.limit - type: integer - description: > - - - name: rate.max - type: integer - description: > - - - - name: ssl - type: group - description: - fields: - - name: rate.value - type: integer - description: - - - name: rate.limit - type: integer - description: - - - name: rate.max - type: integer - description: - - - name: frontend - type: group - description: - fields: - - name: key_rate.value - type: integer - description: - - - name: key_rate.max - type: integer - description: - - - name: session_reuse.pct - type: scaled_float - format: percent - description: - - - name: backend - type: group - description: - fields: - - name: key_rate.value - type: integer - description: - - - name: key_rate.max - type: integer - description: MaxConnRate - - name: cached_lookups - type: long - description: - - name: cache_misses - type: long - description: - - - - name: zlib_mem_usage - type: group - description: > - - fields: - - name: value - type: integer - description: > - - - name: max - type: integer - description: > - - - name: idle.pct - type: scaled_float - format: percent - description: > - - - name: stat - type: group - description: > - Stats collected from HAProxy processes. - fields: - - - name: status - type: keyword - description: > - Status (UP, DOWN, NOLB, MAINT, or MAINT(via)...). - - - name: weight - type: long - description: > - Total weight (for backends), or server weight (for servers). - - - name: downtime - type: long - description: > - Total downtime (in seconds). For backends, this value is the downtime - for the whole backend, not the sum of the downtime for the servers. - - - name: component_type - type: integer - description: > - Component type (0=frontend, 1=backend, 2=server, or 3=socket/listener). - - - name: process_id - type: integer - description: > - Process ID (0 for first instance, 1 for second, and so on). - - - name: service_name - type: keyword - description: > - Service name (FRONTEND for frontend, BACKEND for backend, or any name for server/listener). - - - name: in.bytes - type: long - format: bytes - description: > - Bytes in. - - - name: out.bytes - type: long - format: bytes - description: > - Bytes out. - - - name: last_change - type: integer - description: > - Number of seconds since the last UP->DOWN or DOWN->UP transition. - - - name: throttle.pct - type: scaled_float - format: percentage - description: > - Current throttle percentage for the server when slowstart - is active, or no value if slowstart is inactive. - - - name: selected.total - type: long - description: > - Total number of times a server was selected, either for new - sessions, or when re-dispatching. For servers, this field reports the - the number of times the server was selected. - - - name: tracked.id - type: long - description: > - ID of the proxy/server if tracking is enabled. - - - name: connection - type: group - fields: - - - name: total - type: long - description: > - Cumulative number of connections. - - - name: retried - type: long - description: > - Number of times a connection to a server was retried. - - - name: time.avg - type: long - description: > - Average connect time in ms over the last 1024 requests. - - - name: request - type: group - fields: - - - name: denied - type: long - description: > - Requests denied because of security concerns. - - * For TCP this is because of a matched tcp-request content rule. - * For HTTP this is because of a matched http-request or tarpit rule. - - - name: queued.current - type: long - description: > - Current queued requests. For backends, this field reports the number - of requests queued without a server assigned. - - - name: queued.max - type: long - description: > - Maximum value of queued.current. - - - name: errors - type: long - description: > - Request errors. Some of the possible causes are: - - * early termination from the client, before the request has been sent - * read error from the client - * client timeout - * client closed connection - * various bad requests from the client. - * request was tarpitted. - - - name: redispatched - type: long - description: > - Number of times a request was redispatched to another server. For - servers, this field reports the number of times the server was - switched away from. - - - name: connection.errors - type: long - description: > - Number of requests that encountered an error trying to - connect to a server. For backends, this field reports the sum of - the stat for all backend servers, plus any connection errors not - associated with a particular server (such as the backend having no - active servers). - - - name: rate - type: group - description: > - fields: - - name: value - type: long - description: > - Number of HTTP requests per second over the last elapsed second. - - name: max - type: long - description: > - Maximum number of HTTP requests per second. - - - name: total - type: long - description: > - Total number of HTTP requests received. - - - - name: response - type: group - fields: - - - name: errors - type: long - description: > - Number of response errors. This value includes the number of data - transfers aborted by the server (haproxy.stat.server.aborted). - Some other errors are: - - * write errors on the client socket (won't be counted for the server stat) - * failure applying filters to the response - - - - name: time.avg - type: long - description: > - Average response time in ms over the last 1024 requests (0 for TCP). - - - name: denied - type: integer - description: > - Responses denied because of security concerns. For HTTP this is - because of a matched http-request rule, or "option checkcache". - - - name: http - type: group - description: > - - fields: - - name: 1xx - type: long - description: > - HTTP responses with 1xx code. - - - name: 2xx - type: long - description: > - HTTP responses with 2xx code. - - - name: 3xx - type: long - description: > - HTTP responses with 3xx code. - - - name: 4xx - type: long - description: > - HTTP responses with 4xx code. - - - name: 5xx - type: long - description: > - HTTP responses with 5xx code. - - - name: other - type: long - description: > - HTTP responses with other codes (protocol error). - - - - name: session - type: group - fields: - - - name: current - type: long - description: > - Number of current sessions. - - - name: max - type: long - description: > - Maximum number of sessions. - - - name: limit - type: long - description: > - Configured session limit. - - - name: rate - type: group - fields: - - name: value - type: integer - description: > - Number of sessions per second over the last elapsed second. - - - name: limit - type: integer - description: > - Configured limit on new sessions per second. - - - name: max - type: integer - description: > - Maximum number of new sessions per second. - - - - name: check - type: group - description: > - - fields: - - name: status - type: keyword - description: > - Status of the last health check. One of: - - UNK -> unknown - INI -> initializing - SOCKERR -> socket error - L4OK -> check passed on layer 4, no upper layers testing enabled - L4TOUT -> layer 1-4 timeout - L4CON -> layer 1-4 connection problem, for example - "Connection refused" (tcp rst) or "No route to host" (icmp) - L6OK -> check passed on layer 6 - L6TOUT -> layer 6 (SSL) timeout - L6RSP -> layer 6 invalid response - protocol error - L7OK -> check passed on layer 7 - L7OKC -> check conditionally passed on layer 7, for example 404 with - disable-on-404 - L7TOUT -> layer 7 (HTTP/SMTP) timeout - L7RSP -> layer 7 invalid response - protocol error - L7STS -> layer 7 response error, for example HTTP 5xx - - - name: code - type: long - description: > - Layer 5-7 code, if available. - - - name: duration - type: long - description: > - Time in ms that it took to finish the last health check. - - - name: health.last - type: long - description: > - - - name: health.fail - type: long - description: > - - - name: agent.last - type: integer - description: > - - - name: failed - type: long - description: > - Number of checks that failed while the server was up. - - - name: down - type: long - description: > - Number of UP->DOWN transitions. For backends, this value is the - number of transitions to the whole backend being down, rather than - the sum of the transitions for each server. - - - name: client.aborted - type: integer - description: > - Number of data transfers aborted by the client. - - - - name: server - type: group - description: > - fields: - - - name: id - type: integer - description: > - Server ID (unique inside a proxy). - - - name: aborted - type: integer - description: > - Number of data transfers aborted by the server. This value is - included in haproxy.stat.response.errors. - - - name: active - type: integer - description: > - Number of backend servers that are active, meaning that they are - healthy and can receive requests from the load balancer. - - - name: backup - type: integer - description: > - Number of backend servers that are backup servers. - - - - name: compressor - type: group - description: > - - fields: - - name: in.bytes - type: long - format: bytes - description: > - Number of HTTP response bytes fed to the compressor. - - - name: out.bytes - type: integer - format: bytes - description: > - Number of HTTP response bytes emitted by the compressor. - - - name: bypassed.bytes - type: long - format: bytes - description: > - Number of bytes that bypassed the HTTP compressor (CPU/BW limit). - - - name: response.bytes - type: long - format: bytes - description: > - Number of HTTP responses that were compressed. - - - name: proxy - type: group - description: > - - fields: - - name: id - type: integer - description: > - Unique proxy ID. - - - name: name - type: keyword - description: > - Proxy name. - - - - name: queue - type: group - description: > - - fields: - - name: limit - type: integer - description: > - Configured queue limit (maxqueue) for the server, or nothing if the - value of maxqueue is 0 (meaning no limit). - - - name: time.avg - type: integer - description: > - The average queue time in ms over the last 1024 requests. - - - - - -- key: jolokia - title: "Jolokia" - description: > - []beta - - Jolokia Module - short_config: false - fields: - - name: jolokia - type: group - description: > - jolokia contains metrics exposed via jolokia agent - fields: - -- key: kafka - title: "kafka" - description: > - kafka Module - - beta[] - short_config: false - fields: - - name: kafka - type: group - description: > - fields: - - name: consumergroup - type: group - description: > - consumergroup - fields: - - name: broker - type: group - description: > - Broker Consumer Group Information have been read from (Broker handling - the consumer group). - fields: - - name: id - type: long - description: > - Broker id - - - name: address - type: keyword - description: > - Broker address - - - name: id - type: keyword - description: Consumer Group ID - - - name: topic - type: keyword - description: Topic name - - - name: partition - type: long - description: Partition ID - - - name: offset - type: long - description: consumer offset into partition being read - - - name: meta - type: text - description: custom consumer meta data string - - - name: error.code - type: long - description: > - kafka consumer/partition error code. - - - name: client - type: group - description: > - Assigned client reading events from partition - fields: - - name: id - type: keyword - description: Client ID (kafka setting client.id) - - - name: host - type: keyword - description: Client host - - - name: member_id - type: keyword - description: internal consumer group member ID - - - name: partition - type: group - description: > - partition - fields: - - name: offset - type: group - description: > - Available offsets of the given partition. - fields: - - name: newest - type: long - description: > - Newest offset of the partition. - - name: oldest - type: long - description: > - Oldest offset of the partition. - - - name: partition - type: group - description: > - Partition data. - fields: - - name: id - type: long - description: > - Partition id. - - - name: leader - type: long - description: > - Leader id (broker). - - name: isr - type: array - description: > - List of isr ids. - - name: replica - type: long - description: > - Replica id (broker). - - - name: insync_replica - type: boolean - description: > - Indicates if replica is included in the in-sync replicate set (ISR). - - - name: error.code - type: long - description: > - Error code from fetching partition. - - - name: topic.error.code - type: long - description: > - topic error code. - - name: topic.name - type: keyword - description: > - Topic name - - - name: broker.id - type: long - description: > - Broker id - - name: broker.address - type: keyword - description: > - Broker address - - - -- key: kibana - title: "kibana" - description: > - []experimental - - kibana Module - fields: - - name: kibana - type: group - description: > - fields: - - name: status - type: group - description: > - Status fields - fields: - - name: name - type: keyword - description: > - Kibana instance name. - - name: uuid - type: keyword - description: > - Kibana instance uuid. - - name: version.number - type: keyword - description: > - Kibana version number. - - name: status.overall.state - type: keyword - description: > - Kibana overall state. - - name: metrics - type: group - description: > - Metrics fields - fields: - - name: concurrent_connections - type: long - description: > - Current concurrent connections. - - name: requests - type: group - description: > - Request statistics. - fields: - - name: disconnects - type: long - description: > - Total number of disconnected connections. - - name: total - type: long - description: > - Total number of connections. - -- key: kubelet - title: "kubelet" - description: > - beta[] - - kubelet Module - short_config: false - fields: - - name: kubelet - type: group - description: > - fields: - - name: container - type: group - description: > - node - fields: - - name: example - type: keyword - description: > - Example field - - - name: node - type: group - description: > - node - fields: - - name: example - type: keyword - description: > - Example field - - - name: pod - type: group - description: > - node - fields: - - name: example - type: keyword - description: > - Example field - - - name: system - type: group - description: > - node - fields: - - name: example - type: keyword - description: > - Example field - - - name: volume - type: group - description: > - node - fields: - - name: example - type: keyword - description: > - Example field - -- key: memcached - title: "memcached" - description: > - []beta - - memcached Module - short_config: false - fields: - - name: memcached - type: group - description: > - fields: - - name: stats - type: group - description: > - stats - fields: - - name: pid - type: long - description: > - Current process ID of the Memcached task. - - - name: uptime.sec - type: long - description: > - Memcached server uptime. - - - name: threads - type: long - description: > - Number of threads used by the current Memcached server process. - - - name: connections.current - type: long - description: > - Number of open connections to this Memcached server, should be the same - value on all servers during normal operation. - - - name: connections.total - type: long - description: > - Numer of successful connect attempts to this server since it has been started. - - - name: get.hits - type: long - description: > - Number of successful "get" commands (cache hits) since startup, divide them - by the "cmd_get" value to get the cache hitrate. - - - name: get.misses - type: long - description: > - Number of failed "get" requests because nothing was cached for this key - or the cached value was too old. - - - name: cmd.get - type: long - description: > - Number of "get" commands received since server startup not counting if they - were successful or not. - - - name: cmd.set - type: long - description: > - Number of "set" commands serviced since startup. - - - name: read.bytes - type: long - formate: bytes - description: > - Total number of bytes received from the network by this server. - - - name: written.bytes - type: long - formate: bytes - description: > - Total number of bytes send to the network by this server. - - - name: items.current - type: long - description: > - Number of items currently in this server's cache. - - - name: items.total - type: long - formate: bytes - description: > - Number of items stored ever stored on this server. This is no "maximum item - count" value but a counted increased by every new item stored in the cache. - - - name: evictions - type: long - formate: bytes - description: > - Number of objects removed from the cache to free up memory for new items - because Memcached reached it's maximum memory setting (limit_maxbytes). - -- key: mongodb - title: "MongoDB" - description: > - Metrics collected from MongoDB servers. - short_config: false - fields: - - name: mongodb - type: group - description: > - MongoDB metrics. - fields: - - name: dbstats - type: group - description: > - dbstats provides an overview of a particular mongo database. This document - is most concerned with data volumes of a database. - fields: - - name: avg_obj_size.bytes - type: long - format: bytes - - - name: collections - type: integer - - - name: data_size.bytes - type: long - format: bytes - - - name: db - type: keyword - - - name: file_size.bytes - type: long - format: bytes - - - name: index_size.bytes - type: long - format: bytes - - - name: indexes - type: long - - - name: num_extents - type: long - - - name: objects - type: long - - - name: storage_size.bytes - type: long - format: bytes - - - name: ns_size_mb.mb - type: long - - - name: data_file_version - type: group - fields: - - name: major - type: long - - - name: minor - type: long - - - name: extent_free_list - type: group - fields: - - name: num - type: long - - - name: size.bytes - type: long - format: bytes - - - name: status - type: group - description: > - MongoDB server status metrics. - fields: - - name: version - type: keyword - description: > - Instance version. - - name: uptime.ms - type: long - description: > - Instance uptime in milliseconds. - - name: local_time - type: date - description: > - Local time as reported by the MongoDB instance. - - - name: asserts.regular - type: long - description: > - Number of regular assertions produced by the server. - - name: asserts.warning - type: long - description: > - Number of warning assertions produced by the server. - - name: asserts.msg - type: long - description: > - Number of msg assertions produced by the server. - - name: asserts.user - type: long - description: > - Number of user assertions produced by the server. - - name: asserts.rollovers - type: long - description: > - Number of rollovers assertions produced by the server. - - - name: background_flushing - type: group - description: > - Data about the process MongoDB uses to write data to disk. This data is - only available for instances that use the MMAPv1 storage engine. - fields: - - name: flushes - type: long - description: > - A counter that collects the number of times the database has - flushed all writes to disk. - - name: total.ms - type: long - description: > - The total number of milliseconds (ms) that the mongod processes have - spent writing (i.e. flushing) data to disk. Because this is an - absolute value, consider the value of `flushes` and `average_ms` to - provide better context for this datum. - - name: average.ms - type: long - description: > - The average time spent flushing to disk per flush event. - - name: last.ms - type: long - description: > - The amount of time, in milliseconds, that the last flush operation - took to complete. - - name: last_finished - type: date - description: > - A timestamp of the last completed flush operation. - - - name: connections - type: group - description: > - Data regarding the current status of incoming connections and - availability of the database server. - fields: - - name: current - type: long - description: > - The number of connections to the database server from clients. This - number includes the current shell session. Consider the value of - `available` to add more context to this datum. - - name: available - type: long - description: > - The number of unused available incoming connections the database - can provide. - - name: total_created - type: long - description: > - A count of all incoming connections created to the server. This - number includes connections that have since closed. - - - name: journaling - type: group - description: > - Data about the journaling-related operations and performance. Journaling - information only appears for mongod instances that use the MMAPv1 - storage engine and have journaling enabled. - fields: - - name: commits - type: long - description: > - The number of transactions written to the journal during the last - journal group commit interval. - - name: journaled.mb - type: long - description: > - The amount of data in megabytes (MB) written to journal during the - last journal group commit interval. - - name: write_to_data_files.mb - type: long - description: > - The amount of data in megabytes (MB) written from journal to the - data files during the last journal group commit interval. - - name: compression - type: long - description: > - The compression ratio of the data written to the journal. - - name: commits_in_write_lock - type: long - description: > - Count of the commits that occurred while a write lock was held. - Commits in a write lock indicate a MongoDB node under a heavy write - load and call for further diagnosis. - - name: early_commits - type: long - description: > - The number of times MongoDB requested a commit before the scheduled - journal group commit interval. - - name: times - type: group - description: > - Information about the performance of the mongod instance during the - various phases of journaling in the last journal group commit - interval. - fields: - - name: dt.ms - type: long - description: > - The amount of time over which MongoDB collected the times data. - Use this field to provide context to the other times field values. - - name: prep_log_buffer.ms - type: long - description: > - The amount of time spent preparing to write to the journal. - Smaller values indicate better journal performance. - - name: write_to_journal.ms - type: long - description: > - The amount of time spent actually writing to the journal. File - system speeds and device interfaces can affect performance. - - name: write_to_data_files.ms - type: long - description: > - The amount of time spent writing to data files after journaling. - File system speeds and device interfaces can affect performance. - - name: remap_private_view.ms - type: long - description: > - The amount of time spent remapping copy-on-write memory mapped - views. Smaller values indicate better journal performance. - - name: commits.ms - type: long - description: > - The amount of time spent for commits. - - name: commits_in_write_lock.ms - type: long - description: > - The amount of time spent for commits that occurred while a write - lock was held. - - - name: extra_info - type: group - description: > - Platform specific data. - fields: - - name: heap_usage.bytes - type: long - format: bytes - description: > - The total size in bytes of heap space used by the database process. - Only available on Unix/Linux. - - name: page_faults - type: long - description: > - The total number of page faults that require disk operations. Page - faults refer to operations that require the database server to - access data that isn't available in active memory. - - - name: network - type: group - description: > - Platform specific data. - fields: - - name: in.bytes - type: long - format: bytes - description: > - The amount of network traffic, in bytes, received by this database. - - name: out.bytes - type: long - format: bytes - description: > - The amount of network traffic, in bytes, sent from this database. - - name: requests - type: long - description: > - The total number of requests received by the server. - - - name: opcounters - type: group - description: > - An overview of database operations by type. - fields: - - name: insert - type: long - description: > - The total number of insert operations received since the mongod - instance last started. - - name: query - type: long - description: > - The total number of queries received since the mongod instance last - started. - - name: update - type: long - description: > - The total number of update operations received since the mongod - instance last started. - - name: delete - type: long - description: > - The total number of delete operations received since the mongod - instance last started. - - name: getmore - type: long - description: > - The total number of getmore operations received since the mongod - instance last started. - - name: command - type: long - description: > - The total number of commands issued to the database since the mongod - instance last started. - - - name: opcounters_replicated - type: group - description: > - An overview of database replication operations by type. - fields: - - name: insert - type: long - description: > - The total number of replicated insert operations received since the - mongod instance last started. - - name: query - type: long - description: > - The total number of replicated queries received since the mongod - instance last started. - - name: update - type: long - description: > - The total number of replicated update operations received since the - mongod instance last started. - - name: delete - type: long - description: > - The total number of replicated delete operations received since the - mongod instance last started. - - name: getmore - type: long - description: > - The total number of replicated getmore operations received since the - mongod instance last started. - - name: command - type: long - description: > - The total number of replicated commands issued to the database since - the mongod instance last started. - - - name: memory - type: group - description: > - Data about the current memory usage of the mongod server. - fields: - - name: bits - type: long - description: > - Either 64 or 32, depending on which target architecture was specified - during the mongod compilation process. - - name: resident.mb - type: long - description: > - The amount of RAM, in megabytes (MB), currently used by the database - process. - - name: virtual.mb - type: long - description: > - The amount, in megabytes (MB), of virtual memory used by the mongod - process. - - name: mapped.mb - type: long - description: > - The amount of mapped memory, in megabytes (MB), used by the database. - Because MongoDB uses memory-mapped files, this value is likely to be - to be roughly equivalent to the total size of your database or - databases. - - name: mapped_with_journal.mb - type: long - description: > - The amount of mapped memory, in megabytes (MB), including the memory - used for journaling. - - name: write_backs_queued - type: boolean - description: > - True when there are operations from a mongos instance queued for retrying. - - name: storage_engine.name - type: keyword - description: > - A string that represents the name of the current storage engine. - - - name: wired_tiger - type: group - description: > - Statistics about the WiredTiger storage engine. - fields: - - name: concurrent_transactions - type: group - description: > - Statistics about the transactions currently in progress. - fields: - - name: write.out - type: long - description: > - Number of concurrent write transaction in progress. - - name: write.available - type: long - description: > - Number of concurrent write tickets available. - - name: write.total_tickets - type: long - description: > - Number of total write tickets. - - name: read.out - type: long - description: > - Number of concurrent read transaction in progress. - - name: read.available - type: long - description: > - Number of concurrent read tickets available. - - name: read.total_tickets - type: long - description: > - Number of total read tickets. - - name: cache - type: group - description: > - Statistics about the cache and page evictions from the cache. - fields: - - name: maximum.bytes - type: long - format: bytes - description: > - Maximum cache size. - - name: used.bytes - type: long - format: bytes - description: > - Size in byte of the data currently in cache. - - name: dirty.bytes - type: long - format: bytes - description: > - Size in bytes of the dirty data in the cache. - - name: pages.read - type: long - description: > - Number of pages read into the cache. - - name: pages.write - type: long - description: > - Number of pages written from the cache. - - name: pages.evicted - type: long - description: > - Number of pages evicted from the cache. - - name: log - type: group - description: > - Statistics about the write ahead log used by WiredTiger. - fields: - - name: size.bytes - type: long - format: bytes - description: > - Total log size in bytes. - - name: write.bytes - type: long - format: bytes - description: > - Number of bytes written into the log. - - name: max_file_size.bytes - type: long - format: bytes - description: > - Maximum file size. - - name: flushes - type: long - description: > - Number of flush operations. - - name: writes - type: long - description: > - Number of write operations. - - name: scans - type: long - description: > - Number of scan operations. - - name: syncs - type: long - description: > - Number of sync operations. - - - - - - - - - -- key: mysql - title: "MySQL" - description: > - MySQL server status metrics collected from MySQL. - short_config: false - fields: - - name: mysql - type: group - description: > - `mysql` contains the metrics that were obtained from MySQL - query. - fields: - - name: status - type: group - description: > - `status` contains the metrics that were obtained by the status SQL query. - fields: - - name: aborted - type: group - description: > - Aborted status fields. - fields: - - name: clients - type: long - description: > - The number of connections that were aborted because the client died without closing the connection properly. - - - name: connects - type: long - description: > - The number of failed attempts to connect to the MySQL server. - - - name: binlog - type: group - description: > - fields: - - name: cache.disk_use - type: long - description: > - - - name: cache.use - type: long - description: > - - - name: bytes - type: group - description: > - Bytes stats. - fields: - - name: received - format: bytes - type: long - description: > - The number of bytes received from all clients. - - - name: sent - type: long - format: bytes - description: > - The number of bytes sent to all clients. - - - name: threads - type: group - description: > - Threads stats. - fields: - - name: cached - type: long - description: > - The number of cached threads. - - - name: created - type: long - description: > - The number of created threads. - - - name: connected - type: long - description: > - The number of connected threads. - - - name: running - type: long - description: > - The number of running threads. - - - name: connections - type: long - description: > - - - name: created - type: group - description: > - fields: - - name: tmp.disk_tables - type: long - description: > - - - name: tmp.files - type: long - description: > - - - name: tmp.tables - type: long - description: > - - - name: delayed - type: group - description: > - fields: - - name: errors - type: long - description: > - - - name: insert_threads - type: long - description: > - - - name: writes - type: long - description: > - - - name: flush_commands - type: long - description: > - - - name: max_used_connections - type: long - description: > - - - name: open - type: group - description: > - fields: - - name: files - type: long - description: > - - - name: streams - type: long - description: > - - - name: tables - type: long - description: > - - - name: opened_tables - type: long - description: > - - - name: command - type: group - description: > - fields: - - name: delete - type: long - description: > - The number of DELETE queries since startup. - - - name: insert - type: long - description: > - The number of INSERT queries since startup. - - - name: select - type: long - description: > - The number of SELECT queries since startup. - - - name: update - type: long - description: > - The number of UPDATE queries since startup. - -- key: nginx - title: "Nginx" - description: > - Nginx server status metrics collected from various modules. - short_config: false - fields: - - name: nginx - type: group - description: > - `nginx` contains the metrics that were scraped from nginx. - fields: - - name: stubstatus - type: group - description: > - `stubstatus` contains the metrics that were scraped from the ngx_http_stub_status_module status page. - fields: - - name: hostname - type: keyword - description: > - Nginx hostname. - - name: active - type: long - description: > - The current number of active client connections including Waiting connections. - - name: accepts - type: long - description: > - The total number of accepted client connections. - - name: handled - type: long - description: > - The total number of handled client connections. - - name: dropped - type: long - description: > - The total number of dropped client connections. - - name: requests - type: long - description: > - The total number of client requests. - - name: current - type: long - description: > - The current number of client requests. - - name: reading - type: long - description: > - The current number of connections where Nginx is reading the request header. - - name: writing - type: long - description: > - The current number of connections where Nginx is writing the response back to the client. - - name: waiting - type: long - description: > - The current number of idle client connections waiting for a request. - -- key: php_fpm - title: "php_fpm" - description: > - beta[] - - PHP-FPM server status metrics collected from PHP-FPM. - short_config: false - fields: - - name: php_fpm - type: group - description: > - `php_fpm` contains the metrics that were obtained from PHP-FPM status - page call. - fields: - - name: pool - type: group - description: > - `pool` contains the metrics that were obtained from the PHP-FPM process - pool. - fields: - - name: name - type: keyword - description: > - The name of the pool. - - name: connections - type: group - description: > - Connection state specific statistics. - fields: - - name: accepted - type: long - description: > - The number of incoming requests that the PHP-FPM server has accepted; - when a connection is accepted it is removed from the listen queue. - - name: queued - type: long - description: > - The current number of connections that have been initiated, but not - yet accepted. If this value is non-zero it typically means that all - the available server processes are currently busy, and there are no - processes available to serve the next request. Raising - `pm.max_children` (provided the server can handle it) should help - keep this number low. This property follows from the fact that - PHP-FPM listens via a socket (TCP or file based), and thus inherits - some of the characteristics of sockets. - - name: processes - type: group - description: > - Process state specific statistics. - fields: - - name: idle - type: long - description: > - The number of servers in the `waiting to process` state (i.e. not - currently serving a page). This value should fall between the - `pm.min_spare_servers` and `pm.max_spare_servers` values when the - process manager is `dynamic`. - - name: active - type: long - description: > - The number of servers current processing a page - the minimum is `1` - (so even on a fully idle server, the result will be not read `0`). - - name: slow_requests - type: long - description: > - The number of times a request execution time has exceeded - `request_slowlog_timeout`. - -- key: postgresql - title: "PostgreSQL" - description: > - Metrics collected from PostgreSQL servers. - short_config: false - fields: - - name: postgresql - type: group - description: > - PostgreSQL metrics. - fields: - - name: activity - type: group - description: > - One document per server process, showing information related to the current - activity of that process, such as state and current query. Collected by - querying pg_stat_activity. - fields: - - name: database.oid - type: long - description: > - OID of the database this backend is connected to. - - name: database.name - type: keyword - description: > - Name of the database this backend is connected to. - - name: pid - type: long - description: > - Process ID of this backend. - - name: user.id - type: long - description: > - OID of the user logged into this backend. - - name: user.name - description: > - Name of the user logged into this backend. - - name: application_name - description: > - Name of the application that is connected to this backend. - - name: client.address - description: > - IP address of the client connected to this backend. - - name: client.hostname - description: > - Host name of the connected client, as reported by a reverse DNS lookup of client_addr. - - name: client.port - type: long - description: > - TCP port number that the client is using for communication with this - backend, or -1 if a Unix socket is used. - - name: backend_start - type: date - description: > - Time when this process was started, i.e., when the client connected to - the server. - - name: transaction_start - type: date - description: > - Time when this process' current transaction was started. - - name: query_start - type: date - description: > - Time when the currently active query was started, or if state is not - active, when the last query was started. - - name: state_change - type: date - description: > - Time when the state was last changed. - - name: waiting - type: boolean - description: > - True if this backend is currently waiting on a lock. - - name: state - description: > - Current overall state of this backend. Possible values are: - - * active: The backend is executing a query. - * idle: The backend is waiting for a new client command. - * idle in transaction: The backend is in a transaction, but is not - currently executing a query. - * idle in transaction (aborted): This state is similar to idle in - transaction, except one of the statements in the transaction caused - an error. - * fastpath function call: The backend is executing a fast-path function. - * disabled: This state is reported if track_activities is disabled in this backend. - - name: query - description: > - Text of this backend's most recent query. If state is active this field - shows the currently executing query. In all other states, it shows the - last query that was executed. - - - - name: bgwriter - type: group - description: > - Statistics about the background writer process's activity. Collected using the - pg_stat_bgwriter query. - fields: - - name: checkpoints.scheduled - type: long - description: > - Number of scheduled checkpoints that have been performed. - - name: checkpoints.requested - type: long - description: > - Number of requested checkpoints that have been performed. - - name: checkpoints.times.write.ms - type: float - description: > - Total amount of time that has been spent in the portion of checkpoint - processing where files are written to disk, in milliseconds. - - name: checkpoints.times.sync.ms - type: float - description: > - Total amount of time that has been spent in the portion of checkpoint - processing where files are synchronized to disk, in milliseconds. - - name: buffers.checkpoints - type: long - description: > - Number of buffers written during checkpoints. - - name: buffers.clean - type: long - description: > - Number of buffers written by the background writer. - - name: buffers.clean_full - type: long - description: > - Number of times the background writer stopped a cleaning scan because it - had written too many buffers. - - name: buffers.backend - type: long - description: > - Number of buffers written directly by a backend. - - name: buffers.backend_fsync - type: long - description: > - Number of times a backend had to execute its own fsync call (normally - the background writer handles those even when the backend does its own - write) - - name: buffers.allocated - type: long - description: > - Number of buffers allocated. - - name: stats_reset - type: date - description: > - Time at which these statistics were last reset. - - - name: database - type: group - description: > - One row per database, showing database-wide statistics. Collected by querying - pg_stat_database - fields: - - name: oid - type: long - description: > - OID of the database this backend is connected to. - - name: name - type: keyword - description: > - Name of the database this backend is connected to. - - name: number_of_backends - type: long - description: > - Number of backends currently connected to this database. - - name: transactions.commit - type: long - description: > - Number of transactions in this database that have been committed. - - name: transactions.rollback - type: long - description: > - Number of transactions in this database that have been rolled back. - - name: blocks.read - type: long - description: > - Number of disk blocks read in this database. - - name: blocks.hit - type: long - description: > - Number of times disk blocks were found already in the buffer cache, so - that a read was not necessary (this only includes hits in the PostgreSQL - buffer cache, not the operating system's file system cache). - - name: blocks.time.read.ms - type: long - description: > - Time spent reading data file blocks by backends in this database, in - milliseconds. - - name: blocks.time.write.ms - type: long - description: > - Time spent writing data file blocks by backends in this database, in - milliseconds. - - name: rows.returned - type: long - description: > - Number of rows returned by queries in this database. - - name: rows.fetched - type: long - description: > - Number of rows fetched by queries in this database. - - name: rows.inserted - type: long - description: > - Number of rows inserted by queries in this database. - - name: rows.updated - type: long - description: > - Number of rows updated by queries in this database. - - name: rows.deleted - type: long - description: > - Number of rows deleted by queries in this database. - - name: conflicts - type: long - description: > - Number of queries canceled due to conflicts with recovery in this - database. - - name: temporary.files - type: long - description: > - Number of temporary files created by queries in this database. All - temporary files are counted, regardless of why the temporary file was - created (e.g., sorting or hashing), and regardless of the log_temp_files - setting. - - name: temporary.bytes - type: long - description: > - Total amount of data written to temporary files by queries in this - database. All temporary files are counted, regardless of why the - temporary file was created, and regardless of the log_temp_files - setting. - - name: deadlocks - type: long - description: > - Number of deadlocks detected in this database. - - name: stats_reset - type: date - description: > - Time at which these statistics were last reset. - - -- key: prometheus - title: "Prometheus" - description: > - beta[] - - Stats collected from Prometheus. - short_config: false - fields: - - name: prometheus - type: group - description: > - fields: - - - name: stats - type: group - description: > - Stats about the Prometheus server. - fields: - - name: notifications - type: group - description: > - Notification stats. - fields: - - name: queue_length - type: long - description: > - Current queue length. - - name: dropped - type: long - description: > - Number of dropped queue events. - - name: processes.open_fds - type: long - description: > - Number of open file descriptors. - - name: storage.chunks_to_persist - type: long - description: > - Number of memory chunks that are not yet persisted to disk. - -- key: redis - title: "Redis" - description: > - Redis metrics collected from Redis. - short_config: false - fields: - - name: redis - type: group - description: > - `redis` contains the information and statistics from Redis. - fields: - - name: info - type: group - description: > - `info` contains the information and statistics returned by the `INFO` command. - fields: - - name: clients - type: group - description: > - Redis client stats. - fields: - - name: connected - type: long - description: > - Number of client connections (excluding connections from slaves). - - - name: longest_output_list - type: long - description: > - Longest output list among current client connections. - - - name: biggest_input_buf - type: long - description: > - Biggest input buffer among current client connections. - - - name: blocked - type: long - description: > - Number of clients pending on a blocking call (BLPOP, BRPOP, BRPOPLPUSH). - - - name: cluster - type: group - description: > - Redis cluster information. - fields: - - name: enabled - type: boolean - description: > - Indicates that the Redis cluster is enabled. - - - name: cpu - type: group - description: > - Redis CPU stats - fields: - - name: used.sys - type: scaled_float - description: > - System CPU consumed by the Redis server. - - - name: used.sys_children - type: scaled_float - description: > - User CPU consumed by the Redis server. - - - name: used.user - type: scaled_float - description: > - System CPU consumed by the background processes. - - - name: used.user_children - type: scaled_float - description: > - User CPU consumed by the background processes. - - - name: memory - type: group - description: > - Redis memory stats. - fields: - - name: used.value - type: long - description: > - format: bytes - Used memory. - - - name: used.rss - type: long - format: bytes - description: > - Used memory rss. - - - name: used.peak - type: long - format: bytes - description: > - Used memory peak. - - - name: used.lua - type: long - format: bytes - description: > - Used memory lua. - - - name: allocator - type: keyword - description: > - Memory allocator. - - - name: persistence - type: group - description: > - Redis CPU stats. - fields: - - name: loading - type: boolean - description: - - - name: rdb - type: group - description: - fields: - - name: last_save.changes_since - type: long - description: - - - name: bgsave.in_progress - type: boolean - description: - - - name: last_save.time - type: long - description: - - - name: bgsave.last_status - type: keyword - description: - - - name: bgsave.last_time.sec - type: long - description: - - - name: bgsave.current_time.sec - type: long - description: - - - name: aof - type: group - description: - fields: - - name: enabled - type: boolean - description: - - - name: rewrite.in_progress - type: boolean - description: - - - name: rewrite.scheduled - type: boolean - description: - - - name: rewrite.last_time.sec - type: long - description: - - - name: rewrite.current_time.sec - type: long - description: - - - name: bgrewrite.last_status - type: keyword - description: - - - name: write.last_status - type: keyword - description: - - - name: replication - type: group - description: > - Replication - fields: - - name: role - type: keyword - description: - - - name: connected_slaves - type: long - description: - - - name: master_offset - type: long - description: - - - name: backlog.active - type: long - description: - - - name: backlog.size - type: long - description: - - - name: backlog.first_byte_offset - type: long - description: - - - name: backlog.histlen - type: long - description: - - - name: server - type: group - description: > - Server info - fields: - - name: version - type: keyword - description: - - - name: git_sha1 - type: keyword - description: - - - name: git_dirty - type: keyword - description: - - - name: build_id - type: keyword - description: - - - name: mode - type: keyword - description: - - - name: os - type: keyword - description: - - - name: arch_bits - type: keyword - description: - - - name: multiplexing_api - type: keyword - description: - - - name: gcc_version - type: keyword - description: - - - name: process_id - type: long - description: - - - name: run_id - type: keyword - description: - - - name: tcp_port - type: long - description: - - - name: uptime - type: long - description: - - - name: hz - type: long - description: - - - name: lru_clock - type: long - description: - - - name: config_file - type: keyword - description: - - - name: stats - type: group - description: > - Redis stats. - fields: - - name: connections.received - type: long - description: - Total number of connections received. - - - name: connections.rejected - type: long - description: - Total number of connections rejected. - - - name: commands_processed - type: long - description: - Total number of commands preocessed. - - - name: net.input.bytes - type: long - description: - Total network input in bytes. - - - name: net.output.bytes - type: long - description: - Total network output in bytes. - - - name: instantaneous.ops_per_sec - type: long - description: - - - name: instantaneous.input_kbps - type: scaled_float - description: - - - name: instantaneous.output_kbps - type: scaled_float - description: - - - name: sync.full - type: long - description: - - - name: sync.partial.ok - type: long - description: - - - name: sync.partial.err - type: long - description: - - - name: keys.expired - type: long - description: - - - name: keys.evicted - type: long - description: - - - name: keyspace.hits - type: long - description: - - - name: keyspace.misses - type: long - description: - - - name: pubsub.channels - type: long - description: - - - name: pubsub.patterns - type: long - description: - - - name: latest_fork_usec - type: long - description: - - - name: migrate_cached_sockets - type: long - description: - - - - name: keyspace - type: group - description: > - `keyspace` contains the information about the keyspaces returned by the `INFO` command. - fields: - - name: id - type: keyword - description: > - Keyspace identifier. - - - name: avg_ttl - type: long - description: > - Average ttl. - - - name: keys - type: long - description: > - Number of keys in the keyspace. - - - name: expires - type: long - description: > - -- key: system - title: "System" - description: > - System status metrics, like CPU and memory usage, that are collected from the operating system. - fields: - - name: system - type: group - description: > - `system` contains local system metrics. - fields: - - name: core - type: group - description: > - `system-core` contains local CPU core stats. - fields: - - name: id - type: long - description: > - CPU Core number. - - - name: user.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent in user space. On multi-core systems, you can have percentages that are greater than 100%. - For example, if 3 cores are at 60% use, then the `cpu.user_p` will be 180%. - - - name: user.ticks - type: long - description: > - The amount of CPU time spent in user space. - - - name: system.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent in kernel space. - - - name: system.ticks - type: long - description: > - The amount of CPU time spent in kernel space. - - - name: nice.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent on low-priority processes. - - - name: nice.ticks - type: long - description: > - The amount of CPU time spent on low-priority processes. - - - name: idle.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent idle. - - - name: idle.ticks - type: long - description: > - The amount of CPU time spent idle. - - - name: iowait.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent in wait (on disk). - - - name: iowait.ticks - type: long - description: > - The amount of CPU time spent in wait (on disk). - - - name: irq.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent servicing and handling hardware interrupts. - - - name: irq.ticks - type: long - description: > - The amount of CPU time spent servicing and handling hardware interrupts. - - - name: softirq.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent servicing and handling software interrupts. - - - name: softirq.ticks - type: long - description: > - The amount of CPU time spent servicing and handling software interrupts. - - - name: steal.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent in involuntary wait by the virtual CPU while the hypervisor - was servicing another processor. - Available only on Unix. - - - name: steal.ticks - type: long - description: > - The amount of CPU time spent in involuntary wait by the virtual CPU while the hypervisor - was servicing another processor. - Available only on Unix. - - - - name: cpu - type: group - description: > - `cpu` contains local CPU stats. - fields: - - name: cores - type: long - description: > - The number of CPU cores. - - - name: user.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent in user space. On multi-core systems, you can have percentages that are greater than 100%. - For example, if 3 cores are at 60% use, then the `cpu.user_p` will be 180%. - - - name: system.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent in kernel space. - - - name: nice.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent on low-priority processes. - - - name: idle.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent idle. - - - name: iowait.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent in wait (on disk). - - - name: irq.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent servicing and handling hardware interrupts. - - - name: softirq.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent servicing and handling software interrupts. - - - name: steal.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent in involuntary wait by the virtual CPU while the hypervisor - was servicing another processor. - Available only on Unix. - - - name: user.ticks - type: long - description: > - The amount of CPU time spent in user space. - - - name: system.ticks - type: long - description: > - The amount of CPU time spent in kernel space. - - - name: nice.ticks - type: long - description: > - The amount of CPU time spent on low-priority processes. - - - name: idle.ticks - type: long - description: > - The amount of CPU time spent idle. - - - name: iowait.ticks - type: long - description: > - The amount of CPU time spent in wait (on disk). - - - name: irq.ticks - type: long - description: > - The amount of CPU time spent servicing and handling hardware interrupts. - - - name: softirq.ticks - type: long - description: > - The amount of CPU time spent servicing and handling software interrupts. - - - name: steal.ticks - type: long - description: > - The amount of CPU time spent in involuntary wait by the virtual CPU while the hypervisor - was servicing another processor. - Available only on Unix. - - - name: diskio - type: group - description: > - `disk` contains disk IO metrics collected from the operating system. - fields: - - name: name - type: keyword - example: sda1 - description: > - The disk name. - - - name: serial_number - type: keyword - description: > - The disk's serial number. This may not be provided by all operating - systems. - - - name: read.count - type: long - description: > - The total number of reads completed successfully. - - - name: write.count - type: long - description: > - The total number of writes completed successfully. - - - name: read.bytes - type: long - format: bytes - description: > - The total number of bytes read successfully. On Linux this is - the number of sectors read multiplied by an assumed sector size of 512. - - - name: write.bytes - type: long - format: bytes - description: > - The total number of bytes written successfully. On Linux this is - the number of sectors written multiplied by an assumed sector size of - 512. - - - name: read.time - type: long - description: > - The total number of milliseconds spent by all reads. - - - name: write.time - type: long - description: > - The total number of milliseconds spent by all writes. - - - name: io.time - type: long - description: > - The total number of of milliseconds spent doing I/Os. - - - name: filesystem - type: group - description: > - `filesystem` contains local filesystem stats. - fields: - - name: available - type: long - format: bytes - description: > - The disk space available to an unprivileged user in bytes. - - name: device_name - type: keyword - description: > - The disk name. For example: `/dev/disk1` - - name: mount_point - type: keyword - description: > - The mounting point. For example: `/` - - name: files - type: long - description: > - The total number of file nodes in the file system. - - name: free - type: long - format: bytes - description: > - The disk space available in bytes. - - name: free_files - type: long - description: > - The number of free file nodes in the file system. - - name: total - type: long - format: bytes - description: > - The total disk space in bytes. - - name: used.bytes - type: long - format: bytes - description: > - The used disk space in bytes. - - name: used.pct - type: scaled_float - format: percent - description: > - The percentage of used disk space. - - - - - name: fsstat - type: group - description: > - `system.fsstat` contains filesystem metrics aggregated from all mounted - filesystems, similar with what `df -a` prints out. - fields: - - name: count - type: long - description: Number of file systems found. - - name: total_files - type: long - description: Total number of files. - - name: total_size - format: bytes - type: group - description: Nested file system docs. - fields: - - name: free - type: long - format: bytes - description: > - Total free space. - - name: used - type: long - format: bytes - description: > - Total used space. - - name: total - type: long - format: bytes - description: > - Total space (used plus free). - - - name: load - type: group - description: > - Load averages. - fields: - - name: "1" - type: scaled_float - scaling_factor: 100 - description: > - Load average for the last minute. - - name: "5" - type: scaled_float - scaling_factor: 100 - description: > - Load average for the last 5 minutes. - - name: "15" - type: scaled_float - scaling_factor: 100 - description: > - Load average for the last 15 minutes. - - - name: "norm.1" - type: scaled_float - scaling_factor: 100 - description: > - Load divided by the number of cores for the last minute. - - - name: "norm.5" - type: scaled_float - scaling_factor: 100 - description: > - Load divided by the number of cores for the last 5 minutes. - - - name: "norm.15" - type: scaled_float - scaling_factor: 100 - description: > - Load divided by the number of cores for the last 15 minutes. - - - name: memory - type: group - description: > - `memory` contains local memory stats. - fields: - - name: total - type: long - format: bytes - description: > - Total memory. - - - name: used.bytes - type: long - format: bytes - description: > - Used memory. - - - name: free - type: long - format: bytes - description: > - The total amount of free memory in bytes. This value does not include memory consumed by system caches and - buffers (see system.memory.actual.free). - - - name: used.pct - type: scaled_float - format: percent - description: > - The percentage of used memory. - - - name: actual - type: group - description: > - Actual memory used and free. - fields: - - - name: used.bytes - type: long - format: bytes - description: > - Actual used memory in bytes. It represents the difference between the total and the available memory. The - available memory depends on the OS. For more details, please check `system.actual.free`. - - - name: free - type: long - format: bytes - description: > - Actual free memory in bytes. It is calculated based on the OS. On Linux it consists of the free memory - plus caches and buffers. On OSX it is a sum of free memory and the inactive memory. On Windows, it is equal - to `system.memory.free`. - - - name: used.pct - type: scaled_float - format: percent - description: > - The percentage of actual used memory. - - - name: swap - type: group - prefix: "[float]" - description: This group contains statistics related to the swap memory usage on the system. - fields: - - name: total - type: long - format: bytes - description: > - Total swap memory. - - - name: used.bytes - type: long - format: bytes - description: > - Used swap memory. - - - name: free - type: long - format: bytes - description: > - Available swap memory. - - - name: used.pct - type: scaled_float - format: percent - description: > - The percentage of used swap memory. - - - name: network - type: group - description: > - `network` contains network IO metrics for a single network interface. - fields: - - name: name - type: keyword - example: eth0 - description: > - The network interface name. - - - name: out.bytes - type: long - format: bytes - description: > - The number of bytes sent. - - - name: in.bytes - type: long - format: bytes - description: > - The number of bytes received. - - - name: out.packets - type: long - description: > - The number of packets sent. - - - name: in.packets - type: long - description: > - The number or packets received. - - - name: in.errors - type: long - description: > - The number of errors while receiving. - - - name: out.errors - type: long - description: > - The number of errors while sending. - - - name: in.dropped - type: long - description: > - The number of incoming packets that were dropped. - - - name: out.dropped - type: long - description: > - The number of outgoing packets that were dropped. This value is always - 0 on Darwin and BSD because it is not reported by the operating system. - - - name: process - type: group - description: > - `process` contains process metadata, CPU metrics, and memory metrics. - fields: - - name: name - type: keyword - description: > - The process name. - - name: state - type: keyword - description: > - The process state. For example: "running". - - name: pid - type: long - description: > - The process pid. - - name: ppid - type: long - description: > - The process parent pid. - - name: pgid - type: long - description: > - The process group id. - - name: cmdline - type: keyword - description: > - The full command-line used to start the process, including the - arguments separated by space. - - name: username - type: keyword - description: > - The username of the user that created the process. If the username - cannot be determined, the field will contain the user's - numeric identifier (UID). On Windows, this field includes the user's - domain and is formatted as `domain\username`. - - name: cwd - type: keyword - description: > - The current working directory of the process. This field is only - available on Linux. - - name: env - type: object - object_type: keyword - description: > - The environment variables used to start the process. The data is - available on FreeBSD, Linux, and OS X. - - name: cpu - type: group - prefix: "[float]" - description: CPU-specific statistics per process. - fields: - - name: user - type: long - description: > - The amount of CPU time the process spent in user space. - - name: total.pct - type: scaled_float - format: percent - description: > - The percentage of CPU time spent by the process since the last update. Its value is similar to the - %CPU value of the process displayed by the top command on Unix systems. - - name: system - type: long - description: > - The amount of CPU time the process spent in kernel space. - - name: total.ticks - type: long - description: > - The total CPU time spent by the process. - - name: start_time - type: date - description: > - The time when the process was started. - - name: memory - type: group - description: Memory-specific statistics per process. - prefix: "[float]" - fields: - - name: size - type: long - format: bytes - description: > - The total virtual memory the process has. - - name: rss.bytes - type: long - format: bytes - description: > - The Resident Set Size. The amount of memory the process occupied in main memory (RAM). - - name: rss.pct - type: scaled_float - format: percent - description: > - The percentage of memory the process occupied in main memory (RAM). - - name: share - type: long - format: bytes - description: > - The shared memory the process uses. - - name: fd - type: group - description: > - File descriptor usage metrics. This set of metrics is available for - Linux and FreeBSD. - prefix: "[float]" - fields: - - name: open - type: long - description: The number of file descriptors open by the process. - - name: limit.soft - type: long - description: > - The soft limit on the number of file descriptors opened by the - process. The soft limit can be changed by the process at any time. - - name: limit.hard - type: long - description: > - The hard limit on the number of file descriptors opened by the - process. The hard limit can only be raised by root. - - name: cgroup - type: group - description: > - Metrics and limits from the cgroup of which the task is a member. - cgroup metrics are reported when the process has membership in a - non-root cgroup. These metrics are only available on Linux. - fields: - - name: id - type: keyword - description: > - The ID common to all cgroups associated with this task. - If there isn't a common ID used by all cgroups this field will be - absent. - - - name: path - type: keyword - description: > - The path to the cgroup relative to the cgroup subsystem's mountpoint. - If there isn't a common path used by all cgroups this field will be - absent. - - - name: cpu - type: group - description: > - The cpu subsystem schedules CPU access for tasks in the cgroup. - Access can be controlled by two separate schedulers, CFS and RT. - CFS stands for completely fair scheduler which proportionally - divides the CPU time between cgroups based on weight. RT stands for - real time scheduler which sets a maximum amount of CPU time that - processes in the cgroup can consume during a given period. - - fields: - - name: id - type: keyword - description: ID of the cgroup. - - - name: path - type: keyword - description: > - Path to the cgroup relative to the cgroup subsystem's - mountpoint. - - - name: cfs.period.us - type: long - description: > - Period of time in microseconds for how regularly a - cgroup's access to CPU resources should be reallocated. - - - name: cfs.quota.us - type: long - description: > - Total amount of time in microseconds for which all - tasks in a cgroup can run during one period (as defined by - cfs.period.us). - - - name: cfs.shares - type: long - description: > - An integer value that specifies a relative share of CPU time - available to the tasks in a cgroup. The value specified in the - cpu.shares file must be 2 or higher. - - - name: rt.period.us - type: long - description: > - Period of time in microseconds for how regularly a cgroup's - access to CPU resources is reallocated. - - - name: rt.runtime.us - type: long - description: > - Period of time in microseconds for the longest continuous period - in which the tasks in a cgroup have access to CPU resources. - - - name: stats.periods - type: long - description: > - Number of period intervals (as specified in cpu.cfs.period.us) - that have elapsed. - - - name: stats.throttled.periods - type: long - description: > - Number of times tasks in a cgroup have been throttled (that is, - not allowed to run because they have exhausted all of the - available time as specified by their quota). - - - name: stats.throttled.ns - type: long - description: > - The total time duration (in nanoseconds) for which tasks in a - cgroup have been throttled. - - - name: cpuacct - type: group - description: CPU accounting metrics. - fields: - - name: id - type: keyword - description: ID of the cgroup. - - - name: path - type: keyword - description: > - Path to the cgroup relative to the cgroup subsystem's - mountpoint. - - - name: total.ns - type: long - description: > - Total CPU time in nanoseconds consumed by all tasks in the - cgroup. - - - name: stats.user.ns - type: long - description: CPU time consumed by tasks in user mode. - - - name: stats.system.ns - type: long - description: CPU time consumed by tasks in user (kernel) mode. - - - name: percpu - type: object - object_type: long - description: > - CPU time (in nanoseconds) consumed on each CPU by all tasks in - this cgroup. - - - name: memory - type: group - description: Memory limits and metrics. - fields: - - name: id - type: keyword - description: ID of the cgroup. - - - name: path - type: keyword - description: > - Path to the cgroup relative to the cgroup subsystem's mountpoint. - - - name: mem.usage.bytes - type: long - format: bytes - description: > - Total memory usage by processes in the cgroup (in bytes). - - - name: mem.usage.max.bytes - type: long - format: bytes - description: > - The maximum memory used by processes in the cgroup (in bytes). - - - name: mem.limit.bytes - type: long - format: bytes - description: > - The maximum amount of user memory in bytes (including file - cache) that tasks in the cgroup are allowed to use. - - - name: mem.failures - type: long - description: > - The number of times that the memory limit (mem.limit.bytes) was - reached. - - - name: memsw.usage.bytes - type: long - format: bytes - description: > - The sum of current memory usage plus swap space used by - processes in the cgroup (in bytes). - - - name: memsw.usage.max.bytes - type: long - format: bytes - description: > - The maximum amount of memory and swap space used by processes in - the cgroup (in bytes). - - - name: memsw.limit.bytes - type: long - format: bytes - description: > - The maximum amount for the sum of memory and swap usage - that tasks in the cgroup are allowed to use. - - - name: memsw.failures - type: long - description: > - The number of times that the memory plus swap space limit - (memsw.limit.bytes) was reached. - - - name: kmem.usage.bytes - type: long - format: bytes - description: > - Total kernel memory usage by processes in the cgroup (in bytes). - - - name: kmem.usage.max.bytes - type: long - format: bytes - description: > - The maximum kernel memory used by processes in the cgroup (in - bytes). - - - name: kmem.limit.bytes - type: long - format: bytes - description: > - The maximum amount of kernel memory that tasks in the cgroup are - allowed to use. - - - name: kmem.failures - type: long - description: > - The number of times that the memory limit (kmem.limit.bytes) was - reached. - - - name: kmem_tcp.usage.bytes - type: long - format: bytes - description: > - Total memory usage for TCP buffers in bytes. - - - name: kmem_tcp.usage.max.bytes - type: long - format: bytes - description: > - The maximum memory used for TCP buffers by processes in the - cgroup (in bytes). - - - name: kmem_tcp.limit.bytes - type: long - format: bytes - description: > - The maximum amount of memory for TCP buffers that tasks in the - cgroup are allowed to use. - - - name: kmem_tcp.failures - type: long - description: > - The number of times that the memory limit (kmem_tcp.limit.bytes) - was reached. - - - name: stats.active_anon.bytes - type: long - format: bytes - description: > - Anonymous and swap cache on active least-recently-used (LRU) - list, including tmpfs (shmem), in bytes. - - - name: stats.active_file.bytes - type: long - format: bytes - description: File-backed memory on active LRU list, in bytes. - - - name: stats.cache.bytes - type: long - format: bytes - description: Page cache, including tmpfs (shmem), in bytes. - - - name: stats.hierarchical_memory_limit.bytes - type: long - format: bytes - description: > - Memory limit for the hierarchy that contains the memory cgroup, - in bytes. - - - name: stats.hierarchical_memsw_limit.bytes - type: long - format: bytes - description: > - Memory plus swap limit for the hierarchy that contains the - memory cgroup, in bytes. - - - name: stats.inactive_anon.bytes - type: long - format: bytes - description: > - Anonymous and swap cache on inactive LRU list, including tmpfs - (shmem), in bytes - - - name: stats.inactive_file.bytes - type: long - format: bytes - description: > - File-backed memory on inactive LRU list, in bytes. - - - name: stats.mapped_file.bytes - type: long - format: bytes - description: > - Size of memory-mapped mapped files, including tmpfs (shmem), - in bytes. - - - name: stats.page_faults - type: long - description: > - Number of times that a process in the cgroup triggered a page - fault. - - - name: stats.major_page_faults - type: long - description: > - Number of times that a process in the cgroup triggered a major - fault. "Major" faults happen when the kernel actually has to - read the data from disk. - - - name: stats.pages_in - type: long - description: > - Number of pages paged into memory. This is a counter. - - - name: stats.pages_out - type: long - description: > - Number of pages paged out of memory. This is a counter. - - - name: stats.rss.bytes - type: long - format: bytes - description: > - Anonymous and swap cache (includes transparent hugepages), not - including tmpfs (shmem), in bytes. - - - name: stats.rss_huge.bytes - type: long - format: bytes - description: > - Number of bytes of anonymous transparent hugepages. - - - name: stats.swap.bytes - type: long - format: bytes - description: > - Swap usage, in bytes. - - - name: stats.unevictable.bytes - type: long - format: bytes - description: > - Memory that cannot be reclaimed, in bytes. - - - name: blkio - type: group - description: Block IO metrics. - fields: - - name: id - type: keyword - description: ID of the cgroup. - - - name: path - type: keyword - description: > - Path to the cgroup relative to the cgroup subsystems mountpoint. - - - name: total.bytes - type: long - format: bytes - description: > - Total number of bytes transferred to and from all block devices - by processes in the cgroup. - - - name: total.ios - type: long - description: > - Total number of I/O operations performed on all devices - by processes in the cgroup as seen by the throttling policy. - - - name: socket - type: group - description: > - TCP sockets that are active. - fields: - - name: direction - type: keyword - example: incoming - description: > - How the socket was initiated. Possible values are incoming, outgoing, - or listening. - - - name: family - type: keyword - example: ipv4 - description: > - Address family. - - - name: local.ip - type: ip - example: 192.0.2.1 or 2001:0DB8:ABED:8536::1 - description: > - Local IP address. This can be an IPv4 or IPv6 address. - - - name: local.port - type: long - example: 22 - description: > - Local port. - - - name: remote.ip - type: ip - example: 192.0.2.1 or 2001:0DB8:ABED:8536::1 - description: > - Remote IP address. This can be an IPv4 or IPv6 address. - - - name: remote.port - type: long - example: 22 - description: > - Remote port. - - - name: remote.host - type: keyword - example: 76-211-117-36.nw.example.com. - description: > - PTR record associated with the remote IP. It is obtained via reverse - IP lookup. - - - name: remote.etld_plus_one - type: keyword - example: example.com. - description: > - The effective top-level domain (eTLD) of the remote host plus one more - label. For example, the eTLD+1 for "foo.bar.golang.org." is "golang.org.". - The data for determining the eTLD comes from an embedded copy of the data - from http://publicsuffix.org. - - - name: remote.host_error - type: keyword - description: > - Error describing the cause of the reverse lookup failure. - - - name: process.pid - type: long - description: > - ID of the process that opened the socket. - - - name: process.command - type: keyword - description: > - Name of the command (limited to 20 chars by the OS). - - - name: process.cmdline - type: keyword - description: > - - - name: process.exe - type: keyword - description: > - Absolute path to the executable. - - - name: user.id - type: long - description: > - UID of the user running the process. - - - name: user.name - type: keyword - description: > - Name of the user running the process. - -- key: windows - title: "Windows" - description: > - []beta - Module for Windows - short_config: false - fields: - - name: windows - type: group - description: > - fields: - -- key: zookeeper - title: "ZooKeeper" - description: > - ZooKeeper metrics collected by the four-letter monitoring commands. - short_config: false - fields: - - name: zookeeper - type: group - description: > - `zookeeper` contains the metrics reported by ZooKeeper - commands. - fields: - - name: mntr - type: group - description: > - `mntr` contains the metrics reported by the four-letter `mntr` - command. - fields: - - name: hostname - type: keyword - description: > - ZooKeeper hostname. - - name: approximate_data_size - type: long - description: > - Approximate size of ZooKeeper data. - - name: latency.avg - type: long - description: > - Average latency between ensemble hosts in milliseconds. - - name: ephemerals_count - type: long - description: > - Number of ephemeral znodes. - - name: followers - type: long - description: > - Number of followers seen by the current host. - - name: max_file_descriptor_count - type: long - description: > - Maximum number of file descriptors allowed for the ZooKeeper process. - - name: latency.max - type: long - description: > - Maximum latency in milliseconds. - - name: latency.min - type: long - description: > - Minimum latency in milliseconds. - - name: num_alive_connections - type: long - description: > - Number of connections to ZooKeeper that are currently alive. - - name: open_file_descriptor_count - type: long - description: > - Number of file descriptors open by the ZooKeeper process. - - name: outstanding_requests - type: long - description: > - Number of outstanding requests that need to be processed by the cluster. - - name: packets.received - type: long - description: > - Number of ZooKeeper network packets received. - - name: packets.sent - type: long - description: > - Number of ZooKeeper network packets sent. - - name: pending_syncs - type: long - description: > - Number of pending syncs to carry out to ZooKeeper ensemble followers. - - name: server_state - type: keyword - description: > - Role in the ZooKeeper ensemble. - - name: synced_followers - type: long - description: > - Number of synced followers reported when a node server_state is leader. - - name: version - type: keyword - description: > - ZooKeeper version and build string reported. - - name: watch_count - type: long - description: > - Number of watches currently set on the local ZooKeeper process. - - name: znode_count - type: long - description: > - Number of znodes reported by the local ZooKeeper process. - - diff --git a/vendor/github.com/elastic/beats/metricbeat/metricbeat.template-es2x.json b/vendor/github.com/elastic/beats/metricbeat/metricbeat.template-es2x.json index 14ff6100..40ae3330 100644 --- a/vendor/github.com/elastic/beats/metricbeat/metricbeat.template-es2x.json +++ b/vendor/github.com/elastic/beats/metricbeat/metricbeat.template-es2x.json @@ -7,7 +7,7 @@ } }, "_meta": { - "version": "5.3.0" + "version": "5.3.2" }, "date_detection": false, "dynamic_templates": [ diff --git a/vendor/github.com/elastic/beats/metricbeat/metricbeat.template.json b/vendor/github.com/elastic/beats/metricbeat/metricbeat.template.json index da3e01ba..3830a613 100644 --- a/vendor/github.com/elastic/beats/metricbeat/metricbeat.template.json +++ b/vendor/github.com/elastic/beats/metricbeat/metricbeat.template.json @@ -5,7 +5,7 @@ "norms": false }, "_meta": { - "version": "5.3.0" + "version": "5.3.2" }, "date_detection": false, "dynamic_templates": [ diff --git a/vendor/github.com/elastic/beats/metricbeat/module/apache/status/data.go b/vendor/github.com/elastic/beats/metricbeat/module/apache/status/data.go index 72fd73e9..4cd651a3 100644 --- a/vendor/github.com/elastic/beats/metricbeat/module/apache/status/data.go +++ b/vendor/github.com/elastic/beats/metricbeat/module/apache/status/data.go @@ -38,17 +38,17 @@ var ( "children_system": c.Float("CPUChildrenSystem"), }, "connections": s.Object{ - "total": c.Int("ConnsTotal"), + "total": c.Int("ConnsTotal", s.Optional), "async": s.Object{ - "writing": c.Int("ConnsAsyncWriting"), - "keep_alive": c.Int("ConnsAsyncKeepAlive"), - "closing": c.Int("ConnsAsyncClosing"), + "writing": c.Int("ConnsAsyncWriting", s.Optional), + "keep_alive": c.Int("ConnsAsyncKeepAlive", s.Optional), + "closing": c.Int("ConnsAsyncClosing", s.Optional), }, }, "load": s.Object{ - "1": c.Float("Load1"), - "5": c.Float("Load5"), - "15": c.Float("Load15"), + "1": c.Float("Load1", s.Optional), + "5": c.Float("Load5", s.Optional), + "15": c.Float("Load15", s.Optional), }, } ) diff --git a/vendor/github.com/elastic/beats/metricbeat/module/system/fsstat/_meta/docs.asciidoc b/vendor/github.com/elastic/beats/metricbeat/module/system/fsstat/_meta/docs.asciidoc index 4eecef32..06ac6e4d 100644 --- a/vendor/github.com/elastic/beats/metricbeat/module/system/fsstat/_meta/docs.asciidoc +++ b/vendor/github.com/elastic/beats/metricbeat/module/system/fsstat/_meta/docs.asciidoc @@ -1,6 +1,6 @@ === System Fsstat Metricset -The System `fsstats` metricset provides overall file system statistics. +The System `fsstat` metricset provides overall file system statistics. This metricset is available on: diff --git a/vendor/github.com/elastic/beats/packetbeat/docs/configuring-howto.asciidoc b/vendor/github.com/elastic/beats/packetbeat/docs/configuring-howto.asciidoc index 5029ec50..243e0052 100644 --- a/vendor/github.com/elastic/beats/packetbeat/docs/configuring-howto.asciidoc +++ b/vendor/github.com/elastic/beats/packetbeat/docs/configuring-howto.asciidoc @@ -12,6 +12,10 @@ To configure {beatname_uc}, you edit the configuration file. For rpm and deb, yo +/etc/{beatname_lc}/{beatname_lc}.full.yml+ that shows all non-deprecated options. For mac and win, look in the archive that you extracted. +See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + The following topics describe how to configure Packetbeat: * <> diff --git a/vendor/github.com/elastic/beats/packetbeat/docs/gettingstarted.asciidoc b/vendor/github.com/elastic/beats/packetbeat/docs/gettingstarted.asciidoc index e11c6717..b6ef85dc 100644 --- a/vendor/github.com/elastic/beats/packetbeat/docs/gettingstarted.asciidoc +++ b/vendor/github.com/elastic/beats/packetbeat/docs/gettingstarted.asciidoc @@ -39,6 +39,14 @@ See our https://www.elastic.co/downloads/beats/packetbeat[download page] for oth [[deb]] *deb:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- sudo apt-get install libpcap0.8 @@ -46,9 +54,19 @@ curl -L -O https://artifacts.elastic.co/downloads/beats/packetbeat/packetbeat-{v sudo dpkg -i packetbeat-{version}-amd64.deb ---------------------------------------------------------------------- +endif::[] + [[rpm]] *rpm:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- sudo yum install libpcap @@ -56,18 +74,38 @@ curl -L -O https://artifacts.elastic.co/downloads/beats/packetbeat/packetbeat-{v sudo rpm -vi packetbeat-{version}-x86_64.rpm ---------------------------------------------------------------------- +endif::[] + [[mac]] *mac:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + ["source","sh",subs="attributes,callouts"] ---------------------------------------------------------------------- curl -L -O https://artifacts.elastic.co/downloads/beats/packetbeat/packetbeat-{version}-darwin-x86_64.tar.gz tar xzvf packetbeat-{version}-darwin-x86_64.tar.gz ---------------------------------------------------------------------- +endif::[] + [[win]] *win:* +ifeval::["{release-state}"=="unreleased"] + +Version {stack-version} of {beatname_uc} has not yet been released. + +endif::[] + +ifeval::["{release-state}"!="unreleased"] + . Download and install WinPcap from this http://www.winpcap.org/install/default.htm[page]. WinPcap is a library that uses a driver to enable packet capturing. @@ -91,6 +129,8 @@ PS C:\Program Files\Packetbeat> .\install-service-packetbeat.ps1 NOTE: If script execution is disabled on your system, you need to set the execution policy for the current session to allow the script to run. For example: `PowerShell.exe -ExecutionPolicy UnRestricted -File .\install-service-packetbeat.ps1`. +endif::[] + Before starting Packetbeat, you should look at the configuration options in the configuration file, for example `C:\Program Files\Packetbeat\packetbeat.yml` or `/etc/packetbeat/packetbeat.yml`. For more information about these options, see <>. @@ -103,6 +143,10 @@ find the configuration file at `/etc/packetbeat/packetbeat.yml`. For mac and win the archive that you just extracted. There’s also a full example configuration file called `packetbeat.full.yml` that shows all non-deprecated options. +See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + To configure Packetbeat: . Select the network interface from which to capture the traffic. @@ -195,6 +239,9 @@ binary is installed, and run Packetbeat in the foreground with the following options specified: +sudo ./packetbeat -configtest -e+. Make sure your config files are in the path expected by Packetbeat (see <>). If you installed from DEB or RPM packages, run +sudo ./packetbeat.sh -configtest -e+. +Depending on your OS, you might run into file ownership issues when you run this +test. See {libbeat}/config-file-permissions.html[Config File Ownership and Permissions] +in the _Beats Platform Reference_ for more information. [[packetbeat-template]] === Step 3: Loading the Index Template in Elasticsearch @@ -229,8 +276,13 @@ sudo /etc/init.d/packetbeat start [source,shell] ---------------------------------------------------------------------- +sudo chown root packetbeat.yml <1> sudo ./packetbeat -e -c packetbeat.yml -d "publish" ---------------------------------------------------------------------- +<1> You'll be running Packetbeat as root, so you need to change ownership +of the configuration file (see +{libbeat}/config-file-permissions.html[Config File Ownership and Permissions] +in the _Beats Platform Reference_). *win:* @@ -275,3 +327,4 @@ image:./images/packetbeat-statistics.png[Packetbeat statistics] :allplatforms: include::../../libbeat/docs/dashboards.asciidoc[] + diff --git a/vendor/github.com/elastic/beats/packetbeat/docs/index.asciidoc b/vendor/github.com/elastic/beats/packetbeat/docs/index.asciidoc index e99aad73..c3628c56 100644 --- a/vendor/github.com/elastic/beats/packetbeat/docs/index.asciidoc +++ b/vendor/github.com/elastic/beats/packetbeat/docs/index.asciidoc @@ -7,8 +7,8 @@ include::../../libbeat/docs/version.asciidoc[] :metricbeat: http://www.elastic.co/guide/en/beats/metricbeat/{doc-branch} :filebeat: http://www.elastic.co/guide/en/beats/filebeat/{doc-branch} :winlogbeat: http://www.elastic.co/guide/en/beats/winlogbeat/{doc-branch} -:elasticsearch: https://www.elastic.co/guide/en/elasticsearch/reference/{doc-branch} :logstashdoc: https://www.elastic.co/guide/en/logstash/{doc-branch} +:elasticsearch: https://www.elastic.co/guide/en/elasticsearch/reference/{doc-branch} :securitydoc: https://www.elastic.co/guide/en/x-pack/5.2 :kibanadoc: https://www.elastic.co/guide/en/kibana/{doc-branch} :plugindoc: https://www.elastic.co/guide/en/elasticsearch/plugins/{doc-branch} @@ -48,6 +48,7 @@ include::./thrift.asciidoc[] include::./maintaining-topology.asciidoc[] +:standalone: :allplatforms: include::../../libbeat/docs/yaml.asciidoc[] @@ -63,9 +64,4 @@ include::./troubleshooting.asciidoc[] include::./faq.asciidoc[] -pass::[] - include::./new_protocol.asciidoc[] - -pass::[] - diff --git a/vendor/github.com/elastic/beats/packetbeat/docs/new_protocol.asciidoc b/vendor/github.com/elastic/beats/packetbeat/docs/new_protocol.asciidoc index bc1b2607..f01c6761 100644 --- a/vendor/github.com/elastic/beats/packetbeat/docs/new_protocol.asciidoc +++ b/vendor/github.com/elastic/beats/packetbeat/docs/new_protocol.asciidoc @@ -98,634 +98,11 @@ $ git push --set-upstream tsg cool_new_protocol [[protocol-modules]] == Protocol Modules -Packetbeat's source code is split up in Go packages or modules. The protocol -modules can be found in individual folders in the `beats/packetbeat/protos` directory -in the https://github.com/elastic/beats[Beats GitHub repository]. - -Before starting, we recommend reading through the source code of some of the -existing modules. For TCP based protocols, the MySQL or HTTP ones are good -models to follow. For UDP protocols, you can look at the DNS module. - -All protocol modules implement the `TcpProtocolPlugin` or the -`UdpProtocolPlugin` (or both) from the following listing (found in -`beats/packetbeat/protos/protos.go`). - -[source,go] ----------------------------------------------------------------------- -// Functions to be exported by a protocol plugin -type ProtocolPlugin interface { - // Called to initialize the Plugin - Init(test_mode bool, results publish.Transactions) error - - // Called to return the configured ports - GetPorts() []int -} - -type TcpProtocolPlugin interface { - ProtocolPlugin - - // Called when TCP payload data is available for parsing. - Parse(pkt *Packet, tcptuple *common.TcpTuple, - dir uint8, private ProtocolData) ProtocolData - - // Called when the FIN flag is seen in the TCP stream. - ReceivedFin(tcptuple *common.TcpTuple, dir uint8, - private ProtocolData) ProtocolData - - // Called when a packets are missing from the tcp - // stream. - GapInStream(tcptuple *common.TcpTuple, dir uint8, nbytes int, - private ProtocolData) (priv ProtocolData, drop bool) - - // ConnectionTimeout returns the per stream connection timeout. - // Return <=0 to set default tcp module transaction timeout. - ConnectionTimeout() time.Duration -} - -type UdpProtocolPlugin interface { - ProtocolPlugin - - // ParseUdp is invoked when UDP payload data is available for parsing. - ParseUdp(pkt *Packet) -} ----------------------------------------------------------------------- - -At the high level, the protocols plugins receive raw packet data via the -`Parse()` or `ParseUdp()` methods and produce objects that will be indexed into -Elasticsearch. - -The `Parse()` and `ParseUdp()` methods are called for every packet that is -sniffed and is using one of the ports of the protocol as defined by the -`GetPorts()` function. They receive the packet in a Packet object, which looks -like this: - -[source,go] ----------------------------------------------------------------------- -type Packet struct { - Ts time.Time <1> - Tuple common.IpPortTuple <2> - Payload []byte <3> -} ----------------------------------------------------------------------- - -<1> The timestamp of the packet -<2> The source IP address, source port, destination IP address, destination port -combination. -<3> The application layer payload (that is, without the IP and TCP/UDP headers) as a -byte slice. - -The objects are sent using the `publisher.Client` interface defined in the -`beats/libbeat/publisher` directory in the https://github.com/elastic/beats[Beats GitHub repository]. - -Besides the `Parse()` function, the TCP layer also calls the `ReceivedFin()` function -when a TCP stream is closed, and it calls the `GapInStream()` function when packet -loss is detected in a TCP stream. The protocol module can use these callbacks to make -decisions about what to do with partial data that it receives. For example, for the -HTTP/1.0 protocol, the end of connection is used to know when the message is -finished. - - -[float] -=== Registering Your Plugin - -To configure your plugin, you need to add a configuration struct to the -Protocols struct in `config/config.go`. This struct will be filled by -https://gopkg.in/yaml.v2[goyaml] on startup. - -[source,go] ----------------------------------------------------------------------- -type Protocols struct { - Icmp Icmp - Dns Dns - Http Http - Memcache Memcache - Mysql Mysql - Mongodb Mongodb - Pgsql Pgsql - Redis Redis - Thrift Thrift -} ----------------------------------------------------------------------- - -Next create an ID for the new plugin in `protos/protos.go`: - -[source,go] ----------------------------------------------------------------------- -// Protocol constants. -const ( - UnknownProtocol Protocol = iota - HttpProtocol - MysqlProtocol - RedisProtocol - PgsqlProtocol - ThriftProtocol - MongodbProtocol - DnsProtocol - MemcacheProtocol -) - -// Protocol names -var ProtocolNames = []string{ - "unknown", - "http", - "mysql", - "redis", - "pgsql", - "thrift", - "mongodb", - "dns", - "memcache", -} ----------------------------------------------------------------------- - -The protocol names must be in the same order as their corresponding protocol IDs. Additionally the protocol name must match the configuration name. - -Finally register your new protocol plugin in `packetbeat.go` EnabledProtocolPlugins: - -[source,go] ----------------------------------------------------------------------- - -var EnabledProtocolPlugins map[protos.Protocol]protos.ProtocolPlugin = map[protos.Protocol]protos.ProtocolPlugin{ - protos.HttpProtocol: new(http.Http), - protos.MemcacheProtocol: new(memcache.Memcache), - protos.MysqlProtocol: new(mysql.Mysql), - protos.PgsqlProtocol: new(pgsql.Pgsql), - protos.RedisProtocol: new(redis.Redis), - protos.ThriftProtocol: new(thrift.Thrift), - protos.MongodbProtocol: new(mongodb.Mongodb), - protos.DnsProtocol: new(dns.Dns), -} - ----------------------------------------------------------------------- - -Once the module is registered, it can be configured, and packets will be processed. - -Before implementing all the logic for your new protocol module, it can be -helpful to first register the module and implement the minimal plugin interface -for printing a debug message on received packets. This way you can test the plugin registration to ensure that it's working correctly. - -[float] -=== The TCP Parse Function - -For TCP protocols, the `Parse()` function is the heart of the module. As -mentioned earlier, this function is called for every TCP packet -that contains data on the configured ports. - -It is important to understand that because TCP is a stream-based protocol, -the packet boundaries don't necessarily match the application -layer message boundaries. For example, a packet can contain only a part of the -message, it can contain a complete message, or it can contain multiple messages. - -If you see a packet in the middle of the stream, you have no guaranties that its -first byte is the beginning of a message. However, if the packet is the first -seen in a given TCP stream, then you can assume it is the beginning of the message. - -The `Parse()` function needs to deal with these facts, which generally means that it -needs to keep state across multiple packets. - -Let's have a look again at its signature: - -[source,go] ----------------------------------------------------------------------- -func Parse(pkt *protos.Packet, tcptuple *common.TcpTuple, dir uint8, - private protos.ProtocolData) protos.ProtocolData ----------------------------------------------------------------------- - -We've already talked about the first parameter, which contains the packet data. -The rest of the parameters and the return value are used for maintaining state -inside the TCP stream. - -The `tcptuple` is a unique identifier for the TCP stream that the packet -is part of. You can use the `tcptuple.Hashable()` function to get a value that -you can store in a map. The `dir` flag gives you the direction in which the -packet is flowing inside the TCP stream. The two possible values are -`TcpDirectionOriginal` if the packet goes in the same direction as the first -packet from the stream and `TcpDirectionReverse` if the packet goes in -the other direction. - -The `private` parameter can be used by the module to store state in the TCP stream. -The module would typically cast this at run time to a -type of its choice, modify it as needed, and then return the modified value. -The next time the TCP layer calls `Parse()` or another function from the -`TcpProtocolPlugin` interface, it will call the function with the modified -private value. - -Here is an example of how the MySQL module handles the private data: - -[source,go] ----------------------------------------------------------------------- - priv := mysqlPrivateData{} - if private != nil { - var ok bool - priv, ok = private.(mysqlPrivateData) - if !ok { - priv = mysqlPrivateData{} - } - } - - [ ... ] - - return priv ----------------------------------------------------------------------- - -Most modules then use a logic similar to the following to deal with incomplete -data (this example is also from MySQL): - - -[source,go] ----------------------------------------------------------------------- - ok, complete := mysqlMessageParser(priv.Data[dir]) - if !ok { - // drop this tcp stream. Will retry parsing with the next - // segment in it - priv.Data[dir] = nil - logp.Debug("mysql", "Ignore MySQL message. Drop tcp stream.") - return priv - } - - if complete { - mysql.messageComplete(tcptuple, dir, stream) - } else { - // wait for more data - break - } ----------------------------------------------------------------------- - -The `mysqlMessageParser()` is the function that tries to parse a single MySQL -message. Its implementation is MySQL-specific, so it's not interesting to us for this -guide. It returns two values: `ok`, which is `false` if there was a parsing error -from which we cannot recover, and `complete`, which indicates whether a complete -and valid message was separated from the stream. These two values are used for -deciding what to do next. In case of errors, we drop the stream. If there are no -errors, but the message is not yet complete, we do nothing and wait for more -data. Finally, if the message is complete, we go to the next level. - -This block of code is called in a loop so that it can separate multiple messages -found in the same packet. - -[float] -=== The UDP ParseUdp Function - -If the protocol you are working on is running on top of UDP, then all the -complexities that TCP parser/decoders need to deal with around extracting -messages from packets are no longer relevant. - -For an example, see the `ParseUdp()` function from the DNS module. - -[float] -=== Correlation - -Most protocols that Packetbeat supports today are request-response oriented. -Packetbeat indexes into Elasticsearch a document for each request-response pair -(called a transaction). This way we can have data from the request and the -response in the same document and measure the response time. - -But this can be different for your protocol. For example for an asynchronous -protocol like AMPQ, it makes more sense to index a document for every message, -and then no correlation is necessary. On the other hand, for a session-based -protocol like SIP, it might make sense to index a document for a SIP transaction -or for a full SIP dialog, which can have more than two messages. - -The TCP stream or UDP ports are usually good indicators that two messages belong -to the same transactions. Therefore most protocol implementations in -Packetbeat use a map with `tcptuple` maps for correlating the requests with the -responses. One thing you should be careful about is to expire and remove from -this map incomplete transactions. For example, we might see the request that has -created an entry in the map, but if we never see the reply, we need to remove -the request from memory on a timer, otherwise we risk leaking memory. - -[float] -=== Sending the Result - -After the correlation step, you should have an JSON-like object that can be sent -to Elasticsearch for indexing. You send the object by publishing it -through the publisher client interface, which is received by the `Init` -function. The publisher client accepts structures of type `common.MapStr`, which -is essentially a `map[string]interface{}` with a few more convenience methods -added (see the `beats/libbeat/common` package in the https://github.com/elastic/beats[Beats GitHub repository]). - -As an example, here is the relevant code from the Redis module: - -[source,go] ----------------------------------------------------------------------- - event := common.MapStr{ - "@timestamp": common.Time(requ.Ts), - "type": "redis", - "status": error, - "responsetime": responseTime, - "redis": returnValue, - "method": common.NetString(bytes.ToUpper(requ.Method)), - "resource": requ.Path, - "query": requ.Message, - "bytes_in": uint64(requ.Size), - "bytes_out": uint64(resp.Size), - "src": src, - "dst": dst, - } - if redis.SendRequest { - event["request"] = requ.Message - } - if redis.SendResponse { - event["response"] = resp.Message - } - - return event ----------------------------------------------------------------------- - -The following fields are required and their presence will be checked by -system tests: - - * `@timestamp`. Set this to the timestamp of the first packet from the message - and cast it to `common.Time` like in the example. - * `type`. Set this to the protocol name. - * `status`. The status of the transactions. Use either `common.OK_STATUS` or - `common.ERROR_STATUS`. If the protocol doesn't have responses or a meaning of - status code, use OK. - * `resource`. This should represent what is requested, with the exact meaning - depending on the protocol. For HTTP, this is the URL. For SQL databases, - this is the table name. For key-value stores, this is the key. If nothing - seems to make sense to put in this field, use the empty string. - -[float] -=== Helpers - -[float] -==== Parsing Helpers - -In libbeat you also find some helpers for implementing parsers for binary and -text-based protocols. The `Bytes_*` functions are the most low-level helpers -for binary protocols that use network byte order. These functions can be found in the -`beats/libbeat/common` module in the https://github.com/elastic/beats[Beats GitHub repository]. -In addition to these very low-level helpers, a stream -buffer for parsing TCP-based streams, or simply UDP packets with integrated -error handling, is provided by `beats/libbeat/common/streambuf`. The following example -demonstrates using the stream buffer for parsing the Memcache protocol UDP header: - -[source,go] ----------------------------------------------------------------------- -func parseUdpHeader(buf *streambuf.Buffer) (mcUdpHeader, error) { - var h mcUdpHeader - h.requestId, _ = buf.ReadNetUint16() - h.seqNumber, _ = buf.ReadNetUint16() - h.numDatagrams, _ = buf.ReadNetUint16() - buf.Advance(2) // ignore reserved - return h, buf.Err() -} ----------------------------------------------------------------------- - -The stream buffer is also used to implement the binary and text-based protocols -for memcache. - -[source,go] ----------------------------------------------------------------------- - header := buf.Snapshot() - buf.Advance(memcacheHeaderSize) - - msg := parser.message - if msg.IsRequest { - msg.vbucket, _ = header.ReadNetUint16At(6) - } else { - msg.status, _ = header.ReadNetUint16At(6) - } - - cas, _ := header.ReadNetUint64At(16) - if cas != 0 { - setCasUnique(msg, cas) - } - msg.opaque, _ = header.ReadNetUint32At(12) - - // check message length - - extraLen, _ := header.ReadNetUint8At(4) - keyLen, _ := header.ReadNetUint16At(2) - totalLen, _ := header.ReadNetUint32At(8) - - [...] - - if extraLen > 0 { - tmp, _ := buf.Collect(int(extraLen)) - extras := streambuf.NewFixed(tmp) - var err error - if msg.IsRequest && requestArgs != nil { - err = parseBinaryArgs(parser, requestArgs, header, extras) - } else if responseArgs != nil { - err = parseBinaryArgs(parser, responseArgs, header, extras) - } - if err != nil { - msg.AddNotes(err.Error()) - } - } - - if keyLen > 0 { - key, _ := buf.Collect(int(keyLen)) - keys := []memcacheString{memcacheString{key}} - msg.keys = keys - } - - if valueLen == 0 { - return parser.yield(buf.BufferConsumed()) - } ----------------------------------------------------------------------- - -The stream buffer also implements a number of interfaces defined in the standard "io" package -and can easily be used to serialize some packets for testing parsers (see -`beats/packetbeat/protos/memcache/binary_test.go`). - -[float] -==== Module Helpers - -Packetbeat provides the module `beats/packetbeat/protos/applayer` with -common definitions among all application layer protocols. For example using the -Transaction type from `applayer` guarantees that the final document will have all common required fields defined. Just embed the `applayer.Transaction` with your own -application layer transaction type to make use of it. Here is an example from the memcache protocol: - -[source,go] ----------------------------------------------------------------------- - type transaction struct { - applayer.Transaction - - command *commandType - - request *message - response *message - } - - func (t *transaction) Event(event common.MapStr) error { // use applayer.Transaction to write common required fields - if err := t.Transaction.Event(event); err != nil { - logp.Warn("error filling generic transaction fields: %v", err) - return err - } - - mc := common.MapStr{} - event["memcache"] = mc - - [...] - - return nil - } ----------------------------------------------------------------------- - -Use `applayer.Message` in conjunction with `applayer.Transaction` for creating the -transaction and `applayer.Stream` to manage your stream buffers for parsing. +We are working on updating this section. While you're waiting for updates, you +might want to try out the TCP protocol generator at +https://github.com/elastic/beats/tree/master/packetbeat/scripts/tcp-protocol. [[testing]] == Testing -[float] -=== Unit Tests - -For unit tests, use only the Go standard library -http://golang.org/pkg/testing/[testing] package. To make comparing complex -structures less verbose, we use the assert package from the -https://github.com/stretchr/testify[testify] library. - -For parser and decoder tests, it's a good practice to have an array with -test cases containing the inputs and expected outputs. For an example, see the -`Test_splitCookiesHeader` unit test in `beats/packetbeat/protos/http/http_test.go` -in the https://github.com/elastic/beats[Beats GitHub repository]. - -You can also have unit tests that treat the whole module as a black box, calling -its interface functions, then reading the result and checking it. This pattern -is especially useful for checking corner cases related to packet boundaries or -correlation issues. Here is an example from the HTTP module: - -[source,go] ----------------------------------------------------------------------- -func Test_gap_in_body_http1dot0_fin(t *testing.T) { - if testing.Verbose() { <1> - logp.LogInit(logp.LOG_DEBUG, "", false, true, []string{"http", - "httpdetailed"}) - } - http := HttpModForTests() - - data1 := []byte("GET / HTTP/1.0\r\n\r\n") <2> - - data2 := []byte("HTTP/1.0 200 OK\r\n" + - "Date: Tue, 14 Aug 2012 22:31:45 GMT\r\n" + - "Expires: -1\r\n" + - "Cache-Control: private, max-age=0\r\n" + - "Content-Type: text/html; charset=UTF-8\r\n" + - "Content-Encoding: gzip\r\n" + - "Server: gws\r\n" + - "X-XSS-Protection: 1; mode=block\r\n" + - "X-Frame-Options: SAMEORIGIN\r\n" + - "\r\n" + - "xxxxxxxxxxxxxxxxxxxx") - - tcptuple := testCreateTCPTuple() - req := protos.Packet{Payload: data1} - resp := protos.Packet{Payload: data2} - - private := protos.ProtocolData(new(httpConnectionData)) - - private = http.Parse(&req, tcptuple, 0, private) <3> - private = http.ReceivedFin(tcptuple, 0, private) - - private = http.Parse(&resp, tcptuple, 1, private) - - logp.Debug("http", "Now sending gap..") - - private, drop := http.GapInStream(tcptuple, 1, 10, private) - assert.Equal(t, false, drop) - - private = http.ReceivedFin(tcptuple, 1, private) - - trans := expectTransaction(t, http) <4> - assert.NotNil(t, trans) - assert.Equal(t, trans["notes"], []string{"Packet loss while capturing the response"}) -} ----------------------------------------------------------------------- - -<1> It's useful to initialize the logging system in case the `-v` flag is passed -to `go test`. This makes it easy to get the logs for a failing test while -keeping the output clean on a normal run. - -<2> Define the data we'll be using in the test. - -<3> Call the interface functions exported by the module. The `private` structure -is passed from one call to the next like the TCP layer would do. - -<4> The `expectTransaction` function tries to read from the publisher queue and -causes errors in the test case if there's no transaction present. - -To check the coverage of your unit tests, run the `make cover` command at the -top of the repository. - -[float] -=== System Testing - -Because the main input to Packetbeat are packets and the main output are JSON -objects, a convenient way of testing its functionality is by providing PCAP -files as input and checking the results in the files created by using the "file" -output plugin. - -This is the approach taken by the tests in the `beats/packetbeat/tests/system` directory -in the https://github.com/elastic/beats[Beats GitHub repository]. The -tests are written in Python and executed using -https://nose.readthedocs.org/en/latest/[nose]. Here is a simple example test -from the MongoDB suite: - - -[source,python] ----------------------------------------------------------------------- - def test_mongodb_find(self): - """ - Should correctly pass a simple MongoDB find query - """ - self.render_config_template( <1> - mongodb_ports=[27017] - ) - self.run_packetbeat(pcap="mongodb_find.pcap", <2> - debug_selectors=["mongodb"]) - - objs = self.read_output() <3> - o = objs[0] - assert o["type"] == "mongodb" - assert o["method"] == "find" - assert o["status"] == "OK" ----------------------------------------------------------------------- - -<1> The configuration file for each test run is generated from the template. If -your protocol plugin has options in the configuration file, you should add them -to the template. - -<2> The `run_packetbeat` function receives the PCAP file to run. It looks for -the PCAP file in the `beats/packetbeat/tests/system/pcaps` folder. The `debug_selectors` array controls -which log lines to be included. You can use `debug_selectors=["*"]` to enable -all debug messages. - -<3> After the run, the test reads the output files and checks the result. - -TIP: To generate the PCAP files, you can use Packetbeat. The `-dump` CLI -flag will dump to disk all the packets sniffed from the network that match the -BPF filter. - -To run the whole test suite, use: - -[source,shell] ----------------------------------------------------------------------- -$ make test ----------------------------------------------------------------------- - -This requires you to have Python and virtualenv installed, but it automatically -creates and uses the virtualenv. - -To run an individual test, use the following steps: - -[source,shell] ----------------------------------------------------------------------- -$ cd tests -$ . env/bin/activate -$ nosetests test_0025_mongodb_basic.py:Test.test_write_errors ----------------------------------------------------------------------- - -After running the individual test, you can check the logs, the output, and the -configuration file manually by looking into the folder that the `last_run` -symlink points to: - -[source,shell] ----------------------------------------------------------------------- -$ cd last_run -$ ls -output packetbeat.log packetbeat.yml ----------------------------------------------------------------------- +We are working on updating this section. diff --git a/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration.asciidoc b/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration.asciidoc index 18f1b8d6..d661da0b 100644 --- a/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration.asciidoc +++ b/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration.asciidoc @@ -4,7 +4,10 @@ Before modifying configuration settings, make sure you've completed the <> in the Getting Started. -The {beatname_uc} configuration file, +{beatname_lc}.yml+, uses http://yaml.org/[YAML] for its syntax. +The {beatname_uc} configuration file, +{beatname_lc}.yml+, uses http://yaml.org/[YAML] for its syntax. See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + The configuration options are described in the following sections. After changing configuration settings, you need to restart {beatname_uc} to pick up the changes. @@ -20,6 +23,7 @@ configuration settings, you need to restart {beatname_uc} to pick up the changes * <> * <> * <> +* <> * <> * <> * <> diff --git a/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration/packetbeat-options.asciidoc b/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration/packetbeat-options.asciidoc index 317e60b4..82673579 100644 --- a/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration/packetbeat-options.asciidoc +++ b/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration/packetbeat-options.asciidoc @@ -1,5 +1,5 @@ [[configuration-interfaces]] -=== Network Device Configuration +=== Network Device (Interfaces) The `interfaces` section of the +{beatname_lc}.yml+ config file configures the sniffer. Here is an example configuration: @@ -198,7 +198,7 @@ see the following published transactions (when `ignore_outgoing` is true): [[configuration-flows]] -=== Flows Configuration +=== Flows The `flows` section of the +{beatname_lc}.yml+ config file contains configuration options for bidirectional network flows. If section is missing from configuration file, network flows are @@ -236,7 +236,7 @@ disabled, flows are still reported once being timed out. The default value is [[configuration-protocols]] -=== Transaction Protocols Configuration +=== Transaction Protocols The `protocols` section of the +{beatname_lc}.yml+ config file contains configuration options for each supported protocol, including common options like `enabled`, `ports`, `send_request`, `send_response`, and options that are protocol-specific. @@ -731,7 +731,7 @@ formatted JSON objects. [[configuration-processes]] -=== Monitored Processes Configuration +=== Monitored Processes This section of the +{beatname_lc}.yml+ config file is optional, but configuring the processes enables Packetbeat to show you not only the servers that the diff --git a/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration/runconfig.asciidoc b/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration/runconfig.asciidoc index 9f5f2dfe..8f1e70e4 100644 --- a/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration/runconfig.asciidoc +++ b/vendor/github.com/elastic/beats/packetbeat/docs/reference/configuration/runconfig.asciidoc @@ -1,5 +1,5 @@ [[configuration-run-options]] -=== Run Options Configuration +=== Run Options The Beat can drop privileges after creating the sniffing socket. Root access is required for opening the socket, but everything else requires no diff --git a/vendor/github.com/elastic/beats/packetbeat/fields.yml b/vendor/github.com/elastic/beats/packetbeat/fields.yml deleted file mode 100644 index f9e9a02f..00000000 --- a/vendor/github.com/elastic/beats/packetbeat/fields.yml +++ /dev/null @@ -1,1844 +0,0 @@ - -- key: beat - title: Beat - description: > - Contains common beat fields available in all event types. - fields: - - - name: beat.name - description: > - The name of the Beat sending the log messages. If the Beat name is - set in the configuration file, then that value is used. If it is not - set, the hostname is used. To set the Beat name, use the `name` - option in the configuration file. - - name: beat.hostname - description: > - The hostname as returned by the operating system on which the Beat is - running. - - name: beat.timezone - description: > - The timezone as returned by the operating system on which the Beat is - running. - - name: beat.version - description: > - The version of the beat that generated this event. - - - name: "@timestamp" - type: date - required: true - format: date - example: August 26th 2016, 12:35:53.332 - description: > - The timestamp when the event log record was generated. - - - name: tags - description: > - Arbitrary tags that can be set per Beat and per transaction - type. - - - name: fields - type: object - object_type: keyword - description: > - Contains user configurable fields. - - - name: error - type: group - description: > - Error fields containing additional info in case of errors. - fields: - - name: message - type: text - description: > - Error message. - - name: code - type: long - description: > - Error code. - - name: type - type: keyword - description: > - Error type. -- key: cloud - title: Cloud Provider Metadata - description: > - Metadata from cloud providers added by the add_cloud_metadata processor. - fields: - - - name: meta.cloud.provider - example: ec2 - description: > - Name of the cloud provider. Possible values are ec2, gce, or digitalocean. - - - name: meta.cloud.instance_id - description: > - Instance ID of the host machine. - - - name: meta.cloud.machine_type - example: t2.medium - description: > - Machine type of the host machine. - - - name: meta.cloud.availability_zone - example: us-east-1c - description: > - Availability zone in which this host is running. - - - name: meta.cloud.project_id - example: project-x - description: > - Name of the project in Google Cloud. - - - name: meta.cloud.region - description: > - Region in which this host is running. -- key: common - title: Common - description: > - These fields contain data about the environment in which the - transaction or flow was captured. - fields: - - name: server - description: > - The name of the server that served the transaction. - - - name: client_server - description: > - The name of the server that initiated the transaction. - - - name: service - description: > - The name of the logical service that served the transaction. - - - name: client_service - description: > - The name of the logical service that initiated the transaction. - - - name: ip - description: > - The IP address of the server that served the transaction. - format: dotted notation. - - - name: client_ip - description: > - The IP address of the server that initiated the transaction. - format: dotted notation. - - - name: real_ip - description: > - If the server initiating the transaction is a proxy, this field - contains the original client IP address. - For HTTP, for example, the IP address extracted from a configurable - HTTP header, by default `X-Forwarded-For`. - - Unless this field is disabled, it always has a value, and it matches - the `client_ip` for non proxy clients. - format: Dotted notation. - - - name: client_geoip - description: The GeoIP information of the client. - type: group - fields: - - name: location - type: geo_point - example: {lat: 51, lon: 9} - description: > - The GeoIP location of the `client_ip` address. This field is available - only if you define a - https://www.elastic.co/guide/en/elasticsearch/plugins/master/using-ingest-geoip.html[GeoIP Processor] as a pipeline in the - https://www.elastic.co/guide/en/elasticsearch/plugins/master/ingest-geoip.html[Ingest GeoIP processor plugin] or using Logstash. - - - name: client_port - description: > - The layer 4 port of the process that initiated the transaction. - format: dotted notation. - - - name: transport - description: > - The transport protocol used for the transaction. If not specified, then - tcp is assumed. - example: udp - - - name: type - description: > - The type of the transaction (for example, HTTP, MySQL, Redis, or RUM) or "flow" in case of flows. - required: true - - - name: port - description: > - The layer 4 port of the process that served the transaction. - format: dotted notation. - - - name: proc - description: > - The name of the process that served the transaction. - - - name: client_proc - description: > - The name of the process that initiated the transaction. - - - name: release - description: > - The software release of the service serving the transaction. - This can be the commit id or a semantic version. - -- key: flows_event - title: "Flow Event" - description: > - These fields contain data about the flow itself. - fields: - - name: "start_time" - type: date - required: true - format: YYYY-MM-DDTHH:MM:SS.milliZ - example: 2015-01-24T14:06:05.071Z - description: > - The time, the first packet for the flow has been seen. - - - name: "last_time" - type: date - required: true - format: YYYY-MM-DDTHH:MM:SS.milliZ - example: 2015-01-24T14:06:05.071Z - description: > - The time, the most recent processed packet for the flow has been seen. - - - name: final - description: > - Indicates if event is last event in flow. If final is false, the event - reports an intermediate flow state only. - - - name: flow_id - description: > - Internal flow id based on connection meta data and address. - - - name: vlan - description: > - Innermost VLAN address used in network packets. - - - name: outer_vlan - description: > - Second innermost VLAN address used in network packets. - - - - name: source - type: group - description: > - Properties of the source host - fields: - - name: mac - description: > - Source MAC address as indicated by first packet seen for the current flow. - - - name: ip - description: > - Innermost IPv4 source address as indicated by first packet seen for the - current flow. - - - name: ip_location - type: geo_point - example: "40.715, -74.011" - description: > - The GeoIP location of the `ip_source` IP address. The field is a string - containing the latitude and longitude separated by a comma. - - - name: outer_ip - description: > - Second innermost IPv4 source address as indicated by first packet seen - for the current flow. - - - name: outer_ip_location - type: geo_point - example: "40.715, -74.011" - description: > - The GeoIP location of the `outer_ip_source` IP address. The field is a - string containing the latitude and longitude separated by a comma. - - - name: ipv6 - description: > - Innermost IPv6 source address as indicated by first packet seen for the - current flow. - - - name: ipv6_location - type: geo_point - example: "60.715, -76.011" - description: > - The GeoIP location of the `ipv6_source` IP address. The field is a string - containing the latitude and longitude separated by a comma. - - - name: outer_ipv6 - description: > - Second innermost IPv6 source address as indicated by first packet seen - for the current flow. - - - name: outer_ipv6_location - type: geo_point - example: "60.715, -76.011" - description: > - The GeoIP location of the `outer_ipv6_source` IP address. The field is a - string containing the latitude and longitude separated by a comma. - - - name: port - description: > - Source port number as indicated by first packet seen for the current flow. - - - name: stats - type: group - description: > - Object with source to destination flow measurements. - fields: - - name: net_packets_total - type: long - description: > - Total number of packets - - - name: net_bytes_total - type: long - description: > - Total number of bytes - - - - - name: dest - type: group - description: > - Properties of the destination host - fields: - - name: mac - description: > - Destination MAC address as indicated by first packet seen for the current flow. - - - name: ip - description: > - Innermost IPv4 destination address as indicated by first packet seen for the - current flow. - - - name: ip_location - type: geo_point - example: "40.715, -74.011" - description: > - The GeoIP location of the `ip_dest` IP address. The field is a string - containing the latitude and longitude separated by a comma. - - - name: outer_ip - description: > - Second innermost IPv4 destination address as indicated by first packet - seen for the current flow. - - - name: outer_ip_location - type: geo_point - example: "40.715, -74.011" - description: > - The GeoIP location of the `outer_ip_dest` IP address. The field is a - string containing the latitude and longitude separated by a comma. - - - name: ipv6 - description: > - Innermost IPv6 destination address as indicated by first packet seen for the - current flow. - - - name: ipv6_location - type: geo_point - example: "60.715, -76.011" - description: > - The GeoIP location of the `ipv6_dest` IP address. The field is a string - containing the latitude and longitude separated by a comma. - - - name: outer_ipv6 - description: > - Second innermost IPv6 destination address as indicated by first packet - seen for the current flow. - - - name: outer_ipv6_location - type: geo_point - example: "60.715, -76.011" - description: > - The GeoIP location of the `outer_ipv6_dest` IP address. The field is a - string containing the latitude and longitude separated by a comma. - - - name: port - description: > - Destination port number as indicated by first packet seen for the current flow. - - - name: stats - type: group - description: > - Object with destination to source flow measurements. - fields: - - name: net_packets_total - type: long - description: > - Total number of packets - - - name: net_bytes_total - type: long - description: > - Total number of bytes - - name: icmp_id - description: > - ICMP id used in ICMP based flow. - - - name: connection_id - description: > - optional TCP connection id - -- key: trans_event - title: "Transaction Event" - description: > - These fields contain data about the transaction itself. - fields: - - - name: direction - required: true - description: > - Indicates whether the transaction is inbound (emitted by server) - or outbound (emitted by the client). Values can be in or out. No defaults. - possible_values: - - in - - out - - - name: status - description: > - The high level status of the transaction. The way to compute this - value depends on the protocol, but the result has a meaning - independent of the protocol. - required: true - possible_values: - - OK - - Error - - Server Error - - Client Error - - - name: method - description: > - The command/verb/method of the transaction. For HTTP, this is the - method name (GET, POST, PUT, and so on), for SQL this is the verb (SELECT, - UPDATE, DELETE, and so on). - - - name: resource - description: > - The logical resource that this transaction refers to. For HTTP, this is - the URL path up to the last slash (/). For example, if the URL is `/users/1`, - the resource is `/users`. For databases, the resource is typically the - table name. The field is not filled for all transaction types. - - - name: path - required: true - description: > - The path the transaction refers to. For HTTP, this is the URL. - For SQL databases, this is the table name. For key-value stores, this - is the key. - - - name: query - type: keyword - description: > - The query in a human readable format. For HTTP, it will typically be - something like `GET /users/_search?name=test`. For MySQL, it is - something like `SELECT id from users where name=test`. - - - name: params - type: text - description: > - The request parameters. For HTTP, these are the POST or GET parameters. - For Thrift-RPC, these are the parameters from the request. - - - name: notes - description: > - Messages from Packetbeat itself. This field usually contains error messages for - interpreting the raw data. This information can be helpful for troubleshooting. - -- key: raw - title: Raw - description: These fields contain the raw transaction data. - fields: - - name: request - type: text - description: > - For text protocols, this is the request as seen on the wire - (application layer only). For binary protocols this is our - representation of the request. - - - name: response - type: text - description: > - For text protocols, this is the response as seen on the wire - (application layer only). For binary protocols this is our - representation of the request. - -- key: trans_measurements - title: "Measurements (Transactions)" - description: > - These fields contain measurements related to the transaction. - fields: - - name: responsetime - description: > - The wall clock time it took to complete the transaction. - The precision is in milliseconds. - type: long - - - name: cpu_time - description: The CPU time it took to complete the transaction. - type: long - - - name: bytes_in - description: > - The number of bytes of the request. Note that this size is - the application layer message length, without the length of the IP or - TCP headers. - type: long - format: bytes - - - name: bytes_out - description: > - The number of bytes of the response. Note that this size is - the application layer message length, without the length of the IP or - TCP headers. - type: long - format: bytes - - - name: dnstime - type: long - description: > - The time it takes to query the name server for a given request. - This is typically used for RUM (real-user-monitoring) but can - also have values for server-to-server communication when DNS - is used for service discovery. - The precision is in microseconds. - - - name: connecttime - type: long - description: > - The time it takes for the TCP connection to be established for - the given transaction. - The precision is in microseconds. - - - name: loadtime - type: long - description: > - The time it takes for the content to be loaded. This is typically - used for RUM (real-user-monitoring) but it can make sense in other - cases as well. - The precision is in microseconds. - - - name: domloadtime - type: long - description: > - In RUM (real-user-monitoring), the total time it takes for the - DOM to be loaded. In terms of the W3 Navigation Timing API, this is - the difference between `domContentLoadedEnd` and - `domContentLoadedStart`. - -- key: amqp - title: "AMQP" - description: AMQP specific event fields. - fields: - - name: amqp - type: group - fields: - - name: reply-code - type: long - description: > - AMQP reply code to an error, similar to http reply-code - example: 404 - - - name: reply-text - type: keyword - description: > - Text explaining the error. - - - name: class-id - type: long - description: > - Failing method class. - - - name: method-id - type: long - description: > - Failing method ID. - - - name: exchange - type: keyword - description: > - Name of the exchange. - - - name: exchange-type - type: keyword - description: > - Exchange type. - example: fanout - - - name: passive - type: boolean - description: > - If set, do not create exchange/queue. - - - name: durable - type: boolean - description: > - If set, request a durable exchange/queue. - - - name: exclusive - type: boolean - description: > - If set, request an exclusive queue. - - - name: auto-delete - type: boolean - description: > - If set, auto-delete queue when unused. - - - name: no-wait - type: boolean - description: > - If set, the server will not respond to the method. - - - name: consumer-tag - description: > - Identifier for the consumer, valid within the current channel. - - - name: delivery-tag - type: long - description: > - The server-assigned and channel-specific delivery tag. - - - name: message-count - type: long - description: > - The number of messages in the queue, which will be zero for - newly-declared queues. - - - name: consumer-count - type: long - description: > - The number of consumers of a queue. - - - name: routing-key - type: keyword - description: > - Message routing key. - - - name: no-ack - type: boolean - description: > - If set, the server does not expect acknowledgements for messages. - - - name: no-local - type: boolean - description: > - If set, the server will not send messages to the connection that - published them. - - - name: if-unused - type: boolean - description: > - Delete only if unused. - - - name: if-empty - type: boolean - description: > - Delete only if empty. - - - name: queue - type: keyword - description: > - The queue name identifies the queue within the vhost. - - - name: redelivered - type: boolean - description: > - Indicates that the message has been previously delivered to this - or another client. - - - name: multiple - type: boolean - description: > - Acknowledge multiple messages. - - - name: arguments - type: object - description: > - Optional additional arguments passed to some methods. Can be of - various types. - - - name: mandatory - type: boolean - description: > - Indicates mandatory routing. - - - name: immediate - type: boolean - description: > - Request immediate delivery. - - - name: content-type - type: keyword - description: > - MIME content type. - example: text/plain - - - name: content-encoding - type: keyword - description: > - MIME content encoding. - - - name: headers - type: object - object_type: keyword - description: > - Message header field table. - - - name: delivery-mode - type: keyword - description: > - Non-persistent (1) or persistent (2). - - - name: priority - type: long - description: > - Message priority, 0 to 9. - - - name: correlation-id - type: keyword - description: > - Application correlation identifier. - - - name: reply-to - type: keyword - description: > - Address to reply to. - - - name: expiration - type: keyword - description: > - Message expiration specification. - - - name: message-id - type: keyword - description: > - Application message identifier. - - - name: timestamp - type: keyword - description: > - Message timestamp. - - - name: type - type: keyword - description: > - Message type name. - - - name: user-id - type: keyword - description: > - Creating user id. - - - name: app-id - type: keyword - description: > - Creating application id. - -- key: cassandra - title: "Cassandra" - description: Cassandra v4/3 specific event fields. - fields: - - name: cassandra - type: group - description: Information about the Cassandra request and response. - fields: - - name: request - type: group - description: Cassandra request. - fields: - - name: headers - type: group - description: Cassandra request headers. - fields: - - name: version - type: long - description: The version of the protocol. - - name: flags - type: keyword - description: Flags applying to this frame. - - name: stream - type: keyword - description: A frame has a stream id. If a client sends a request message with the stream id X, it is guaranteed that the stream id of the response to that message will be X. - - name: op - type: keyword - description: An operation type that distinguishes the actual message. - - name: length - type: long - description: A integer representing the length of the body of the frame (a frame is limited to 256MB in length). - - name: query - type: keyword - description: The CQL query which client send to cassandra. - - - name: response - type: group - description: Cassandra response. - fields: - - name: headers - type: group - description: Cassandra response headers, the structure is as same as request's header. - fields: - - name: version - type: long - description: The version of the protocol. - - name: flags - type: keyword - description: Flags applying to this frame. - - name: stream - type: keyword - description: A frame has a stream id. If a client sends a request message with the stream id X, it is guaranteed that the stream id of the response to that message will be X. - - name: op - type: keyword - description: An operation type that distinguishes the actual message. - - name: length - type: long - description: A integer representing the length of the body of the frame (a frame is limited to 256MB in length). - - - - name: result - type: group - description: Details about the returned result. - fields: - - name: type - type: keyword - description: Cassandra result type. - - name: rows - type: group - description: Details about the rows. - fields: - - name: num_rows - type: long - description: Representing the number of rows present in this result. - - name: meta - type: group - description: Composed of result metadata. - fields: - - name: keyspace - type: keyword - description: Only present after set Global_tables_spec, the keyspace name. - - name: table - type: keyword - description: Only present after set Global_tables_spec, the table name. - - name: flags - type: keyword - description: Provides information on the formatting of the remaining information. - - name: col_count - type: long - description: Representing the number of columns selected by the query that produced this result. - - name: pkey_columns - type: long - description: Representing the PK columns index and counts. - - name: paging_state - type: keyword - description: The paging_state is a bytes value that should be used in QUERY/EXECUTE to continue paging and retrieve the remainder of the result for this query. - - name: keyspace - type: keyword - description: Indicating the name of the keyspace that has been set. - - name: schema_change - type: group - description: The result to a schema_change message. - fields: - - name: change - type: keyword - description: Representing the type of changed involved. - - name: keyspace - type: keyword - description: This describes which keyspace has changed. - - name: table - type: keyword - description: This describes which table has changed. - - name: object - type: keyword - description: This describes the name of said affected object (either the table, user type, function, or aggregate name). - - name: target - type: keyword - description: Target could be "FUNCTION" or "AGGREGATE", multiple arguments. - - name: name - type: keyword - description: The function/aggregate name. - - name: args - type: keyword - description: One string for each argument type (as CQL type). - - name: prepared - type: group - description: The result to a PREPARE message. - fields: - - name: prepared_id - type: keyword - description: Representing the prepared query ID. - - name: req_meta - type: group - description: This describes the request metadata. - fields: - - name: keyspace - type: keyword - description: Only present after set Global_tables_spec, the keyspace name. - - name: table - type: keyword - description: Only present after set Global_tables_spec, the table name. - - name: flags - type: keyword - description: Provides information on the formatting of the remaining information. - - name: col_count - type: long - description: Representing the number of columns selected by the query that produced this result. - - name: pkey_columns - type: long - description: Representing the PK columns index and counts. - - name: paging_state - type: keyword - description: The paging_state is a bytes value that should be used in QUERY/EXECUTE to continue paging and retrieve the remainder of the result for this query. - - name: resp_meta - type: group - description: This describes the metadata for the result set. - fields: - - name: keyspace - type: keyword - description: Only present after set Global_tables_spec, the keyspace name. - - name: table - type: keyword - description: Only present after set Global_tables_spec, the table name. - - name: flags - type: keyword - description: Provides information on the formatting of the remaining information. - - name: col_count - type: long - description: Representing the number of columns selected by the query that produced this result. - - name: pkey_columns - type: long - description: Representing the PK columns index and counts. - - name: paging_state - type: keyword - description: The paging_state is a bytes value that should be used in QUERY/EXECUTE to continue paging and retrieve the remainder of the result for this query. - - - name: supported - type: object - object_type: keyword - description: Indicates which startup options are supported by the server. This message comes as a response to an OPTIONS message. - - - name: authentication - type: group - description: Indicates that the server requires authentication, and which authentication mechanism to use. - fields: - - name: class - type: keyword - description: Indicates the full class name of the IAuthenticator in use - - - - name: warnings - type: keyword - description: The text of the warnings, only occur when Warning flag was set. - - - name: event - type: group - description: Event pushed by the server. A client will only receive events for the types it has REGISTERed to. - fields: - - name: type - type: keyword - description: Representing the event type. - - name: change - type: keyword - description: The message corresponding respectively to the type of change followed by the address of the new/removed node. - - name: host - type: keyword - description: Representing the node ip. - - name: port - type: long - description: Representing the node port. - - name: schema_change - type: group - description: The events details related to schema change. - fields: - - name: change - type: keyword - description: Representing the type of changed involved. - - name: keyspace - type: keyword - description: This describes which keyspace has changed. - - name: table - type: keyword - description: This describes which table has changed. - - name: object - type: keyword - description: This describes the name of said affected object (either the table, user type, function, or aggregate name). - - name: target - type: keyword - description: Target could be "FUNCTION" or "AGGREGATE", multiple arguments. - - name: name - type: keyword - description: The function/aggregate name. - - name: args - type: keyword - description: One string for each argument type (as CQL type). - - - - name: error - type: group - description: Indicates an error processing a request. The body of the message will be an error code followed by a error message. Then, depending on the exception, more content may follow. - fields: - - name: code - type: long - description: The error code of the Cassandra response. - - - name: msg - type: keyword - description: The error message of the Cassandra response. - - - name: type - type: keyword - description: The error type of the Cassandra response. - - - name: details - type: group - description: The details of the error. - fields: - - name: read_consistency - type: keyword - description: Representing the consistency level of the query that triggered the exception. - - - name: required - type: long - description: Representing the number of nodes that should be alive to respect consistency level. - - - name: alive - type: long - description: Representing the number of replicas that were known to be alive when the request had been processed (since an unavailable exception has been triggered). - - - name: received - type: long - description: Representing the number of nodes having acknowledged the request. - - - name: blockfor - type: long - description: Representing the number of replicas whose acknowledgement is required to achieve consistency level. - - - name: write_type - type: keyword - description: Describe the type of the write that timed out. - - - name: data_present - type: boolean - description: It means the replica that was asked for data had responded. - - - name: keyspace - type: keyword - description: The keyspace of the failed function. - - - name: table - type: keyword - description: The keyspace of the failed function. - - - name: stmt_id - type: keyword - description: Representing the unknown ID. - - - name: num_failures - type: keyword - description: Representing the number of nodes that experience a failure while executing the request. - - - name: function - type: keyword - description: The name of the failed function. - - - name: arg_types - type: keyword - description: One string for each argument type (as CQL type) of the failed function. - - -- key: dns - title: "DNS" - description: DNS-specific event fields. - fields: - - name: dns - type: group - fields: - - name: id - type: long - description: > - The DNS packet identifier assigned by the program that generated the - query. The identifier is copied to the response. - - - name: op_code - description: > - The DNS operation code that specifies the kind of query in the message. - This value is set by the originator of a query and copied into the - response. - example: QUERY - - - name: flags.authoritative - type: boolean - description: > - A DNS flag specifying that the responding server is an authority for - the domain name used in the question. - - - name: flags.recursion_available - type: boolean - description: > - A DNS flag specifying whether recursive query support is available in the - name server. - - - name: flags.recursion_desired - type: boolean - description: > - A DNS flag specifying that the client directs the server to pursue a - query recursively. Recursive query support is optional. - - - name: flags.authentic_data - type: boolean - description: > - A DNS flag specifying that the recursive server considers the response - authentic. - - - name: flags.checking_disabled - type: boolean - description: > - A DNS flag specifying that the client disables the server - signature validation of the query. - - - name: flags.truncated_response - type: boolean - description: > - A DNS flag specifying that only the first 512 bytes of the reply were - returned. - - - name: response_code - description: The DNS status code. - example: NOERROR - - - name: question.name - description: > - The domain name being queried. If the name field contains non-printable - characters (below 32 or above 126), then those characters are represented - as escaped base 10 integers (\DDD). Back slashes and quotes are escaped. - Tabs, carriage returns, and line feeds are converted to \t, \r, and - \n respectively. - example: www.google.com. - - - name: question.type - description: The type of records being queried. - example: AAAA - - - name: question.class - description: The class of of records being queried. - example: IN - - - name: question.etld_plus_one - description: The effective top-level domain (eTLD) plus one more label. - For example, the eTLD+1 for "foo.bar.golang.org." is "golang.org.". - The data for determining the eTLD comes from an embedded copy of the - data from http://publicsuffix.org. - example: amazon.co.uk. - - - name: answers - type: object - description: > - An array containing a dictionary about each answer section returned by - the server. - - - name: answers_count - type: long - description: > - The number of resource records contained in the `dns.answers` field. - - - - name: answers.name - description: The domain name to which this resource record pertains. - example: example.com. - - - name: answers.type - description: The type of data contained in this resource record. - example: MX - - - name: answers.class - description: The class of DNS data contained in this resource record. - example: IN - - - name: answers.ttl - description: > - The time interval in seconds that this resource record may be cached - before it should be discarded. Zero values mean that the data should - not be cached. - type: long - - - name: answers.data - description: > - The data describing the resource. The meaning of this data depends - on the type and class of the resource record. - - - name: authorities - type: object - description: > - An array containing a dictionary for each authority section from the - answer. - - - name: authorities_count - type: long - description: > - The number of resource records contained in the `dns.authorities` field. - The `dns.authorities` field may or may not be included depending on the - configuration of Packetbeat. - - - name: authorities.name - description: The domain name to which this resource record pertains. - example: example.com. - - - name: authorities.type - description: The type of data contained in this resource record. - example: NS - - - name: authorities.class - description: The class of DNS data contained in this resource record. - example: IN - - - name: additionals - type: object - description: > - An array containing a dictionary for each additional section from the - answer. - - - name: additionals_count - type: long - description: > - The number of resource records contained in the `dns.additionals` field. - The `dns.additionals` field may or may not be included depending on the - configuration of Packetbeat. - - - name: additionals.name - description: The domain name to which this resource record pertains. - example: example.com. - - - name: additionals.type - description: The type of data contained in this resource record. - example: NS - - - name: additionals.class - description: The class of DNS data contained in this resource record. - example: IN - - - name: additionals.ttl - description: > - The time interval in seconds that this resource record may be cached - before it should be discarded. Zero values mean that the data should - not be cached. - type: long - - - name: additionals.data - description: > - The data describing the resource. The meaning of this data depends - on the type and class of the resource record. - - - name: opt.version - description: The EDNS version. - example: "0" - - - name: opt.do - type: boolean - description: If set, the transaction uses DNSSEC. - - - name: opt.ext_rcode - description: Extended response code field. - example: "BADVERS" - - - name: opt.udp_size - type: long - description: Requestor's UDP payload size (in bytes). - -- key: http - title: "HTTP" - description: HTTP-specific event fields. - fields: - - name: http - type: group - description: Information about the HTTP request and response. - fields: - - name: request - description: HTTP request - type: group - fields: - - name: params - description: > - The query parameters or form values. The query parameters are available in the Request-URI - and the form values are set in the HTTP body when the content-type is set to `x-www-form-urlencoded`. - - name: headers - type: object - object_type: keyword - description: > - A map containing the captured header fields from the request. - Which headers to capture is configurable. If headers with the same - header name are present in the message, they will be separated by - commas. - - name: body - type: text - description: The body of the HTTP request. - - - name: response - description: HTTP response - type: group - fields: - - name: code - description: The HTTP status code. - example: 404 - - - name: phrase - description: The HTTP status phrase. - example: Not found. - - - name: headers - type: object - object_type: keyword - description: > - A map containing the captured header fields from the response. - Which headers to capture is configurable. If headers with the - same header name are present in the message, they will be separated - by commas. - - name: body - description: The body of the HTTP response. - -- key: icmp - title: "ICMP" - description: > - ICMP specific event fields. - fields: - - name: icmp - type: group - fields: - - name: version - description: The version of the ICMP protocol. - possible_values: - - 4 - - 6 - - - name: request.message - type: keyword - description: A human readable form of the request. - - - name: request.type - type: long - description: The request type. - - - name: request.code - type: long - description: The request code. - - - name: response.message - type: keyword - description: A human readable form of the response. - - - name: response.type - type: long - description: The response type. - - - name: response.code - type: long - description: The response code. - -- key: memcache - title: "Memcache" - description: Memcached-specific event fields - fields: - - name: memcache - type: group - fields: - - name: protocol_type - type: keyword - description: > - The memcache protocol implementation. The value can be "binary" - for binary-based, "text" for text-based, or "unknown" for an unknown - memcache protocol type. - - - name: request.line - type: keyword - description: > - The raw command line for unknown commands ONLY. - - - name: request.command - type: keyword - description: > - The memcache command being requested in the memcache text protocol. - For example "set" or "get". - The binary protocol opcodes are translated into memcache text protocol - commands. - - - name: response.command - type: keyword - description: > - Either the text based protocol response message type - or the name of the originating request if binary protocol is used. - - - name: request.type - type: keyword - description: > - The memcache command classification. This value can be "UNKNOWN", "Load", - "Store", "Delete", "Counter", "Info", "SlabCtrl", "LRUCrawler", - "Stats", "Success", "Fail", or "Auth". - - - name: response.type - type: keyword - description: > - The memcache command classification. This value can be "UNKNOWN", "Load", - "Store", "Delete", "Counter", "Info", "SlabCtrl", "LRUCrawler", - "Stats", "Success", "Fail", or "Auth". - The text based protocol will employ any of these, whereas the - binary based protocol will mirror the request commands only (see - `memcache.response.status` for binary protocol). - - - name: response.error_msg - type: keyword - description: > - The optional error message in the memcache response (text based protocol only). - - - name: request.opcode - type: keyword - description: > - The binary protocol message opcode name. - - - name: response.opcode - type: keyword - description: > - The binary protocol message opcode name. - - - name: request.opcode_value - type: long - description: > - The binary protocol message opcode value. - - - name: response.opcode_value - type: long - description: > - The binary protocol message opcode value. - - - name: request.opaque - type: long - description: > - The binary protocol opaque header value used for correlating request - with response messages. - - - name: response.opaque - type: long - description: > - The binary protocol opaque header value used for correlating request - with response messages. - - - name: request.vbucket - type: long - description: > - The vbucket index sent in the binary message. - - - name: response.status - type: keyword - description: > - The textual representation of the response error code - (binary protocol only). - - - name: response.status_code - type: long - description: > - The status code value returned in the response (binary protocol only). - - - name: request.keys - type: array - description: > - The list of keys sent in the store or load commands. - - - name: response.keys - type: array - description: > - The list of keys returned for the load command (if present). - - - name: request.count_values - type: long - description: > - The number of values found in the memcache request message. - If the command does not send any data, this field is missing. - - - name: response.count_values - type: long - description: > - The number of values found in the memcache response message. - If the command does not send any data, this field is missing. - - - name: request.values - type: array - description: > - The list of base64 encoded values sent with the request (if present). - - - name: response.values - type: array - description: > - The list of base64 encoded values sent with the response (if present). - - - name: request.bytes - type: long - format: bytes - description: > - The byte count of the values being transferred. - - - name: response.bytes - type: long - format: bytes - description: > - The byte count of the values being transferred. - - - name: request.delta - type: long - description: > - The counter increment/decrement delta value. - - - name: request.initial - type: long - description: > - The counter increment/decrement initial value parameter (binary protocol only). - - - name: request.verbosity - type: long - description: > - The value of the memcache "verbosity" command. - - - name: request.raw_args - type: keyword - description: > - The text protocol raw arguments for the "stats ..." and "lru crawl ..." commands. - - - name: request.source_class - type: long - description: > - The source class id in 'slab reassign' command. - - - name: request.dest_class - type: long - description: > - The destination class id in 'slab reassign' command. - - - name: request.automove - type: keyword - description: > - The automove mode in the 'slab automove' command expressed as a string. - This value can be "standby"(=0), "slow"(=1), "aggressive"(=2), or the raw value if - the value is unknown. - - - name: request.flags - type: long - description: > - The memcache command flags sent in the request (if present). - - - name: response.flags - type: long - description: > - The memcache message flags sent in the response (if present). - - - name: request.exptime - type: long - description: > - The data expiry time in seconds sent with the memcache command (if present). - If the value is <30 days, the expiry time is relative to "now", or else it - is an absolute Unix time in seconds (32-bit). - - - name: request.sleep_us - type: long - description: > - The sleep setting in microseconds for the 'lru_crawler sleep' command. - - - name: response.value - type: long - description: > - The counter value returned by a counter operation. - - - name: request.noreply - type: boolean - description: > - Set to true if noreply was set in the request. - The `memcache.response` field will be missing. - - - name: request.quiet - type: boolean - description: > - Set to true if the binary protocol message is to be treated as a quiet message. - - - name: request.cas_unique - type: long - description: > - The CAS (compare-and-swap) identifier if present. - - - name: response.cas_unique - type: long - description: > - The CAS (compare-and-swap) identifier to be used with CAS-based updates - (if present). - - - name: response.stats - type: array - description: > - The list of statistic values returned. Each entry is a dictionary with the - fields "name" and "value". - - - name: response.version - type: keyword - description: > - The returned memcache version string. - -- key: mongodb - title: "MongoDb" - description: > - MongoDB-specific event fields. These fields mirror closely - the fields for the MongoDB wire protocol. The higher level fields - (for example, `query` and `resource`) apply to MongoDB events as well. - fields: - - name: mongodb - type: group - fields: - - name: error - description: > - If the MongoDB request has resulted in an error, this field contains the - error message returned by the server. - - name: fullCollectionName - description: > - The full collection name. - The full collection name is the concatenation of the database name with the collection name, - using a dot (.) for the concatenation. - For example, for the database foo and the collection bar, the full collection name is foo.bar. - - name: numberToSkip - type: long - description: > - Sets the number of documents to omit - starting from the first document in the resulting dataset - - when returning the result of the query. - - name: numberToReturn - type: long - description: > - The requested maximum number of documents to be returned. - - name: numberReturned - type: long - description: > - The number of documents in the reply. - - name: startingFrom - description: > - Where in the cursor this reply is starting. - - name: query - description: > - A JSON document that represents the query. - The query will contain one or more elements, all of which must match for a document - to be included in the result set. - Possible elements include $query, $orderby, $hint, $explain, and $snapshot. - - name: returnFieldsSelector - description: > - A JSON document that limits the fields in the returned documents. - The returnFieldsSelector contains one or more elements, each of which is the name of a field that should be returned, - and the integer value 1. - - name: selector - description: > - A BSON document that specifies the query for selecting the document to update or delete. - - name: update - description: > - A BSON document that specifies the update to be performed. - For information on specifying updates, see the Update Operations documentation from the MongoDB Manual. - - name: cursorId - description: > - The cursor identifier returned in the OP_REPLY. This must be the value that was returned from the database. - - - name: rpc - type: group - description: OncRPC specific event fields. - fields: - - name: xid - description: RPC message transaction identifier. - - - name: call_size - type: long - description: RPC call size with argument. - - - name: reply_size - type: long - description: RPC reply size with argument. - - - name: status - description: RPC message reply status. - - - name: time - type: long - description: RPC message processing time. - - - name: time_str - description: RPC message processing time in human readable form. - - - name: auth_flavor - description: RPC authentication flavor. - - - name: cred.uid - type: long - description: RPC caller's user id, in case of auth-unix. - - - name: cred.gid - type: long - description: RPC caller's group id, in case of auth-unix. - - - name: cred.gids - description: RPC caller's secondary group ids, in case of auth-unix. - - - name: cred.stamp - type: long - description: Arbitrary ID which the caller machine may generate. - - - name: cred.machinename - description: The name of the caller's machine. - -- key: mysql - title: "MySQL" - description: > - MySQL-specific event fields. - fields: - - name: mysql - type: group - fields: - - name: iserror - type: boolean - description: > - If the MySQL query returns an error, this field is set to true. - - - name: affected_rows - type: long - description: > - If the MySQL command is successful, this field contains the affected - number of rows of the last statement. - - - name: insert_id - description: > - If the INSERT query is successful, this field contains the id of the - newly inserted row. - - - name: num_fields - description: > - If the SELECT query is successful, this field is set to the number - of fields returned. - - - name: num_rows - description: > - If the SELECT query is successful, this field is set to the number - of rows returned. - - - name: query - description: > - The row mysql query as read from the transaction's request. - - - name: error_code - type: long - description: > - The error code returned by MySQL. - - - name: error_message - description: > - The error info message returned by MySQL. - -- key: nfs - title: "NFS" - description: NFS v4/3 specific event fields. - fields: - - name: nfs - type: group - fields: - - name: version - type: long - description: NFS protocol version number. - - - name: minor_version - type: long - description: NFS protocol minor version number. - - - name: tag - description: NFS v4 COMPOUND operation tag. - - - name: opcode - description: > - NFS operation name, or main operation name, in case of COMPOUND - calls. - - - name: status - description: NFS operation reply status. - - -- key: pgsql - title: "PostgreSQL" - description: > - PostgreSQL-specific event fields. - fields: - - name: pgsql - type: group - fields: - - name: query - description: > - The row pgsql query as read from the transaction's request. - - - name: iserror - type: boolean - description: > - If the PgSQL query returns an error, this field is set to true. - - - name: error_code - description: The PostgreSQL error code. - type: long - - - name: error_message - description: The PostgreSQL error message. - - - name: error_severity - description: The PostgreSQL error severity. - possible_values: - - ERROR - - FATAL - - PANIC - - - name: num_fields - description: > - If the SELECT query if successful, this field is set to the number - of fields returned. - - - name: num_rows - description: > - If the SELECT query if successful, this field is set to the number - of rows returned. - -- key: redis - title: "Redis" - description: > - Redis-specific event fields. - fields: - - name: redis - type: group - fields: - - name: return_value - description: > - The return value of the Redis command in a human readable format. - - - name: error - description: > - If the Redis command has resulted in an error, this field contains the - error message returned by the Redis server. - -- key: thrift - title: "Thrift-RPC" - description: > - Thrift-RPC specific event fields. - fields: - - name: thrift - type: group - fields: - - name: params - description: > - The RPC method call parameters in a human readable format. If the IDL - files are available, the parameters use names whenever possible. - Otherwise, the IDs from the message are used. - - - name: service - description: > - The name of the Thrift-RPC service as defined in the IDL files. - - - name: return_value - description: > - The value returned by the Thrift-RPC call. This is encoded in a human - readable format. - - - name: exceptions - description: > - If the call resulted in exceptions, this field contains the exceptions in a human - readable format. - diff --git a/vendor/github.com/elastic/beats/packetbeat/packetbeat.template-es2x.json b/vendor/github.com/elastic/beats/packetbeat/packetbeat.template-es2x.json index 882dea46..40b5b860 100644 --- a/vendor/github.com/elastic/beats/packetbeat/packetbeat.template-es2x.json +++ b/vendor/github.com/elastic/beats/packetbeat/packetbeat.template-es2x.json @@ -7,7 +7,7 @@ } }, "_meta": { - "version": "5.3.0" + "version": "5.3.2" }, "date_detection": false, "dynamic_templates": [ diff --git a/vendor/github.com/elastic/beats/packetbeat/packetbeat.template.json b/vendor/github.com/elastic/beats/packetbeat/packetbeat.template.json index ee99a1b8..1a131cbb 100644 --- a/vendor/github.com/elastic/beats/packetbeat/packetbeat.template.json +++ b/vendor/github.com/elastic/beats/packetbeat/packetbeat.template.json @@ -5,7 +5,7 @@ "norms": false }, "_meta": { - "version": "5.3.0" + "version": "5.3.2" }, "date_detection": false, "dynamic_templates": [ diff --git a/vendor/github.com/elastic/beats/testing/environments/args.yml b/vendor/github.com/elastic/beats/testing/environments/args.yml index de63840d..92720956 100644 --- a/vendor/github.com/elastic/beats/testing/environments/args.yml +++ b/vendor/github.com/elastic/beats/testing/environments/args.yml @@ -5,5 +5,5 @@ services: args: build: args: - DOWNLOAD_URL: https://staging.elastic.co/5.3.0-e5a8c674/downloads - ELASTIC_VERSION: 5.3.0 + DOWNLOAD_URL: https://staging.elastic.co/5.3.1-ca15c737/downloads + ELASTIC_VERSION: 5.3.1 diff --git a/vendor/github.com/elastic/beats/winlogbeat/docs/configuring-howto.asciidoc b/vendor/github.com/elastic/beats/winlogbeat/docs/configuring-howto.asciidoc index fb8dd4f0..a7d3ef23 100644 --- a/vendor/github.com/elastic/beats/winlogbeat/docs/configuring-howto.asciidoc +++ b/vendor/github.com/elastic/beats/winlogbeat/docs/configuring-howto.asciidoc @@ -11,6 +11,10 @@ To configure {beatname_uc}, you edit the configuration file. You’ll find the c +{beatname_lc}.yml+, in the archive that you extracted. There's also a full example configuration file at +/etc/{beatname_lc}/{beatname_lc}.full.yml+ that shows all non-deprecated options. +See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + The following topics describe how to configure Winlogbeat: * <> diff --git a/vendor/github.com/elastic/beats/winlogbeat/docs/getting-started.asciidoc b/vendor/github.com/elastic/beats/winlogbeat/docs/getting-started.asciidoc index b929904b..7c212c48 100644 --- a/vendor/github.com/elastic/beats/winlogbeat/docs/getting-started.asciidoc +++ b/vendor/github.com/elastic/beats/winlogbeat/docs/getting-started.asciidoc @@ -59,13 +59,16 @@ Before starting Winlogbeat, you should look at the configuration options in the configuration file, for example `C:\Program Files\Winlogbeat\winlogbeat.yml`. There’s also a full example configuration file called `winlogbeat.full.yml` that shows all non-deprecated options. For more information about these options, see -<>. +<>. [[winlogbeat-configuration]] === Step 2: Configuring Winlogbeat -To configure Winlogbeat, you edit the `winlogbeat.yml` configuration file. Here -is a sample of the `winlogbeat.yml` file: +To configure Winlogbeat, you edit the `winlogbeat.yml` configuration file. See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + +Here is a sample of the `winlogbeat.yml` file: [source,yaml] -------------------------------------------------------------------------------- @@ -174,3 +177,4 @@ to meet your needs. image:./images/winlogbeat-dashboard.png[Winlogbeat statistics] include::../../libbeat/docs/dashboards.asciidoc[] + diff --git a/vendor/github.com/elastic/beats/winlogbeat/docs/index.asciidoc b/vendor/github.com/elastic/beats/winlogbeat/docs/index.asciidoc index 53437fbc..bb6c2073 100644 --- a/vendor/github.com/elastic/beats/winlogbeat/docs/index.asciidoc +++ b/vendor/github.com/elastic/beats/winlogbeat/docs/index.asciidoc @@ -7,6 +7,7 @@ include::../../libbeat/docs/version.asciidoc[] :metricbeat: http://www.elastic.co/guide/en/beats/metricbeat/{doc-branch} :filebeat: http://www.elastic.co/guide/en/beats/filebeat/{doc-branch} :winlogbeat: http://www.elastic.co/guide/en/beats/winlogbeat/{doc-branch} +:logstashdoc: https://www.elastic.co/guide/en/logstash/{doc-branch} :elasticsearch: https://www.elastic.co/guide/en/elasticsearch/reference/{doc-branch} :securitydoc: https://www.elastic.co/guide/en/x-pack/5.2 :version: {stack-version} @@ -32,6 +33,7 @@ include::../../libbeat/docs/shared-config-ingest.asciidoc[] include::../../libbeat/docs/shared-env-vars.asciidoc[] +:standalone: :win: include::../../libbeat/docs/yaml.asciidoc[] diff --git a/vendor/github.com/elastic/beats/winlogbeat/docs/reference/configuration.asciidoc b/vendor/github.com/elastic/beats/winlogbeat/docs/reference/configuration.asciidoc index 54bc344e..d4f1db33 100644 --- a/vendor/github.com/elastic/beats/winlogbeat/docs/reference/configuration.asciidoc +++ b/vendor/github.com/elastic/beats/winlogbeat/docs/reference/configuration.asciidoc @@ -5,7 +5,10 @@ Before modifying configuration settings, make sure you've completed the <> in the Getting Started. -The {beatname_uc} configuration file, +{beatname_lc}.yml+, uses http://yaml.org/[YAML] for its syntax. +The {beatname_uc} configuration file, +{beatname_lc}.yml+, uses http://yaml.org/[YAML] for its syntax. See the +{libbeat}/config-file-format.html[Config File Format] section of the +_Beats Platform Reference_ for more about the structure of the config file. + The configuration options are described in the following sections. After changing configuration settings, you need to restart {beatname_uc} to pick up the changes. @@ -18,6 +21,7 @@ configuration settings, you need to restart {beatname_uc} to pick up the changes * <> * <> * <> +* <> * <> * <> * <> diff --git a/vendor/github.com/elastic/beats/winlogbeat/docs/reference/configuration/winlogbeat-options.asciidoc b/vendor/github.com/elastic/beats/winlogbeat/docs/reference/configuration/winlogbeat-options.asciidoc index 531c839f..0c7e7c32 100644 --- a/vendor/github.com/elastic/beats/winlogbeat/docs/reference/configuration/winlogbeat-options.asciidoc +++ b/vendor/github.com/elastic/beats/winlogbeat/docs/reference/configuration/winlogbeat-options.asciidoc @@ -2,7 +2,7 @@ supporting the Windows Event Log API (Microsoft Windows Vista and newer). [[configuration-winlogbeat-options]] -=== Winlogbeat Configuration +=== Winlogbeat The `winlogbeat` section of the +{beatname_lc}.yml+ config file specifies all options that are specific to Winlogbeat. Most importantly, it contains the list of event logs to monitor. diff --git a/vendor/github.com/elastic/beats/winlogbeat/fields.yml b/vendor/github.com/elastic/beats/winlogbeat/fields.yml deleted file mode 100644 index 7aebfbe0..00000000 --- a/vendor/github.com/elastic/beats/winlogbeat/fields.yml +++ /dev/null @@ -1,305 +0,0 @@ - -- key: beat - title: Beat - description: > - Contains common beat fields available in all event types. - fields: - - - name: beat.name - description: > - The name of the Beat sending the log messages. If the Beat name is - set in the configuration file, then that value is used. If it is not - set, the hostname is used. To set the Beat name, use the `name` - option in the configuration file. - - name: beat.hostname - description: > - The hostname as returned by the operating system on which the Beat is - running. - - name: beat.timezone - description: > - The timezone as returned by the operating system on which the Beat is - running. - - name: beat.version - description: > - The version of the beat that generated this event. - - - name: "@timestamp" - type: date - required: true - format: date - example: August 26th 2016, 12:35:53.332 - description: > - The timestamp when the event log record was generated. - - - name: tags - description: > - Arbitrary tags that can be set per Beat and per transaction - type. - - - name: fields - type: object - object_type: keyword - description: > - Contains user configurable fields. - - - name: error - type: group - description: > - Error fields containing additional info in case of errors. - fields: - - name: message - type: text - description: > - Error message. - - name: code - type: long - description: > - Error code. - - name: type - type: keyword - description: > - Error type. -- key: cloud - title: Cloud Provider Metadata - description: > - Metadata from cloud providers added by the add_cloud_metadata processor. - fields: - - - name: meta.cloud.provider - example: ec2 - description: > - Name of the cloud provider. Possible values are ec2, gce, or digitalocean. - - - name: meta.cloud.instance_id - description: > - Instance ID of the host machine. - - - name: meta.cloud.machine_type - example: t2.medium - description: > - Machine type of the host machine. - - - name: meta.cloud.availability_zone - example: us-east-1c - description: > - Availability zone in which this host is running. - - - name: meta.cloud.project_id - example: project-x - description: > - Name of the project in Google Cloud. - - - name: meta.cloud.region - description: > - Region in which this host is running. -- key: common - title: "Common Winlogbeat" - description: > - Contains common fields available in all event types. - fields: - - name: type - required: true - description: > - The event log API type used to read the record. The possible values are - "wineventlog" for the Windows Event Log API or "eventlogging" for the - Event Logging API. - - The Event Logging API was designed for Windows Server 2003, Windows XP, - or Windows 2000 operating systems. In Windows Vista, the event logging - infrastructure was redesigned. On Windows Vista or later operating - systems, the Windows Event Log API is used. Winlogbeat automatically - detects which API to use for reading event logs. - - -- key: eventlog - title: Event Log Record - description: > - Contains data from a Windows event log record. - fields: - - name: activity_id - type: keyword - required: false - description: > - A globally unique identifier that identifies the current activity. The - events that are published with this identifier are part of the same - activity. - - - name: computer_name - type: keyword - required: true - description: > - The name of the computer that generated the record. When using Windows - event forwarding, this name can differ from the `beat.hostname`. - - - name: event_data - type: object - object_type: keyword - required: false - description: > - The event-specific data. This field is mutually exclusive with - `user_data`. If you are capturing event data on versions prior - to Windows Vista, the parameters in `event_data` are named `param1`, - `param2`, and so on, because event log parameters are unnamed in - earlier versions of Windows. - - - name: event_id - type: long - required: true - description: > - The event identifier. The value is specific to the source of the event. - - - name: keywords - type: keyword - required: false - description: > - The keywords are used to classify an event. - - - name: log_name - type: keyword - required: true - description: > - The name of the event log from which this record was read. This value is - one of the names from the `event_logs` collection in the configuration. - - - name: level - type: keyword - required: false - description: > - The level of the event. There are five levels of events that can be - logged: Success, Information, Warning, Error, Audit Success, and Audit - Failure. - - - name: message - type: text - required: false - description: > - The message from the event log record. - - - name: message_error - type: keyword - required: false - description: > - The error that occurred while reading and formatting the message from - the log. - - - name: record_number - type: keyword - required: true - description: > - The record number of the event log record. The first record written - to an event log is record number 1, and other records are numbered - sequentially. If the record number reaches the maximum value (2^32^ - for the Event Logging API and 2^64^ for the Windows Event Log API), - the next record number will be 0. - - - name: related_activity_id - type: keyword - required: false - description: > - A globally unique identifier that identifies the activity to which - control was transferred to. The related events would then have this - identifier as their `activity_id` identifier. - - - name: opcode - type: keyword - required: false - description: > - The opcode defined in the event. Task and opcode are typically used to - identify the location in the application from where the event was - logged. - - - name: provider_guid - type: keyword - required: false - description: > - A globally unique identifier that identifies the provider that logged - the event. - - - name: process_id - type: long - required: false - description: > - The process_id identifies the process that generated the event. - - - name: source_name - type: keyword - required: true - description: > - The source of the event log record (the application or service that - logged the record). - - - name: task - type: keyword - required: false - description: > - The task defined in the event. Task and opcode are typically used to - identify the location in the application from where the event was - logged. The category used by the Event Logging API (on pre Windows Vista - operating systems) is written to this field. - - - name: thread_id - type: long - required: false - description: > - The thread_id identifies the thread that generated the event. - - - name: user_data - type: object - object_type: keyword - required: false - description: > - The event specific data. This field is mutually exclusive with - `event_data`. - - - name: user.identifier - type: keyword - required: false - example: S-1-5-21-3541430928-2051711210-1391384369-1001 - description: > - The Windows security identifier (SID) of the account associated with - this event. - - - If Winlogbeat cannot resolve the SID to a name, then the `user.name`, - `user.domain`, and `user.type` fields will be omitted from the event. - If you discover Winlogbeat not resolving SIDs, review the log for - clues as to what the problem may be. - - - name: user.name - type: keyword - required: false - description: > - The name of the account associated with this event. - - - name: user.domain - type: keyword - required: false - description: > - The domain that the account associated with this event is a member of. - - - name: user.type - type: keyword - required: false - description: > - The type of account associated with this event. - - - name: version - type: long - required: false - description: The version number of the event's definition. - - - name: xml - type: keyword - type: text - required: false - description: > - The raw XML representation of the event obtained from Windows. This - field is only available on operating systems supporting the Windows - Event Log API (Microsoft Windows Vista and newer). This field is not - included by default and must be enabled by setting `include_xml: true` - as a configuration option for an individual event log. - - - The XML representation of the event is useful for troubleshooting - purposes. The data in the fields reported by Winlogbeat can be compared - to the data in the XML to diagnose problems. diff --git a/vendor/github.com/elastic/beats/winlogbeat/winlogbeat.template-es2x.json b/vendor/github.com/elastic/beats/winlogbeat/winlogbeat.template-es2x.json index 12ea907d..08cf7586 100644 --- a/vendor/github.com/elastic/beats/winlogbeat/winlogbeat.template-es2x.json +++ b/vendor/github.com/elastic/beats/winlogbeat/winlogbeat.template-es2x.json @@ -7,7 +7,7 @@ } }, "_meta": { - "version": "5.3.0" + "version": "5.3.2" }, "date_detection": false, "dynamic_templates": [ diff --git a/vendor/github.com/elastic/beats/winlogbeat/winlogbeat.template.json b/vendor/github.com/elastic/beats/winlogbeat/winlogbeat.template.json index 7cfb0d3b..bfd1ba8c 100644 --- a/vendor/github.com/elastic/beats/winlogbeat/winlogbeat.template.json +++ b/vendor/github.com/elastic/beats/winlogbeat/winlogbeat.template.json @@ -5,7 +5,7 @@ "norms": false }, "_meta": { - "version": "5.3.0" + "version": "5.3.2" }, "date_detection": false, "dynamic_templates": [