Skip to content

Instantly share code, notes, and snippets.

@cyhook

cyhook/cyphon setup.md

Last active October 12, 2017 12:19
Show Gist options
  • Save cyhook/156e1e8ac74b33111fe6a160e00af6a7 to your computer and use it in GitHub Desktop.
Save cyhook/156e1e8ac74b33111fe6a160e00af6a7 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
cyphon setup.md

STEP 1: Add a static IP Address

Log into the server add configure the static IP address username: user password: P@$$w0rd123

nano /etc/network/interfaces
iface eth0 inet dhcp              #Replace with: iface eth0 inet static

   address 10.253.0.50
   netmask 255.255.255.0
   network 10.253.0.0
   gateway 10.253.0.1
   dns-nameservers 8.8.8.8


ifdown eth0
ifup eth0

STEP 2: SSH into Cyphon from your remote IP

ssh user@xxx.xxx.xxx.xxx               # Password is: P@$$w0rd123

STEP 3: SETUP ELK

Access Kibana on cyphonserverip:5601 and add the index cyphon-* to kibana and choose the time field name as @timestamp

STEP 4: ADD Plugins to logstash

docker ps

CONTAINER ID        IMAGE                                                 COMMAND                  CREATED             STATUS                 PORTS                                                                                        NAMES
b386d40a2ecf        dunbar/cyphon:latest                                  "/bin/sh -c $CYPHO..."   6 weeks ago         Up 2 hours (healthy)   8000/tcp                                                                                     cyphondock_cyphon_1
db2dcb8292ee        nginx:1.11                                            "nginx -g 'daemon ..."   2 months ago        Up 2 hours             0.0.0.0:80->80/tcp, 0.0.0.0:443->443/tcp, 0.0.0.0:5601->5601/tcp, 0.0.0.0:15672->15672/tcp   cyphondock_nginx_1
b9e9c558584b        24ace0d84b6e                                          "../entrypoints/ru..."   2 months ago        Up 2 hours             8000/tcp                                                                                     cyphondock_logchutes_1
3e4f84ab7609        24ace0d84b6e                                          "../entrypoints/ru..."   2 months ago        Up 2 hours             8000/tcp                                                                                     cyphondock_monitors_1
91675d21e45d        24ace0d84b6e                                          "../entrypoints/ru..."   2 months ago        Up 2 hours             8000/tcp                                                                                     cyphondock_watchdogs_1
42c79a16892f        24ace0d84b6e                                          "../entrypoints/ru..."   2 months ago        Up 2 hours             8000/tcp                                                                                     cyphondock_celeryworker_1
895a42b665d0        24ace0d84b6e                                          "../entrypoints/ru..."   2 months ago        Up 2 hours             8000/tcp                                                                                     cyphondock_celerybeat_1
a49abc97cbb2        docker.elastic.co/beats/filebeat:5.3.2                "filebeat -e"            2 months ago        Up About an hour                                                                                                    cyphondock_filebeat_1
131031907e0a        gliderlabs/logspout:latest                            "/bin/logspout sys..."   2 months ago        Up 2 hours             80/tcp, 5000/udp                                                                             cyphondock_logspout_1
d83555aff7a4        docker.elastic.co/logstash/logstash:5.3.2             "/usr/local/bin/do..."   2 months ago        Up About an hour       0.0.0.0:5044-5045->5044-5045/tcp, 9600/tcp                                                   cyphondock_logstash_1
4171cfdd7199        docker.elastic.co/kibana/kibana:5.3.2                 "/bin/sh -c /usr/l..."   2 months ago        Up 2 hours             5601/tcp                                                                                     cyphondock_kibana_1
11aaf154c5f7        rabbitmq:3.6-management                               "docker-entrypoint..."   2 months ago        Up 2 hours             4369/tcp, 5671-5672/tcp, 15671-15672/tcp, 25672/tcp                                          cyphondock_rabbit_1
8c58db4a6df6        mdillon/postgis:9.6                                   "docker-entrypoint..."   2 months ago        Up 2 hours             5432/tcp                                                                                     cyphondock_postgres_1
a665aa42b69e        docker.elastic.co/elasticsearch/elasticsearch:5.3.2   "/bin/bash bin/es-..."   2 months ago        Up 2 hours             9200/tcp, 9300/tcp                                                                           cyphondock_elasticsearch_1
873d28d14fe6        dunbar/geoip                                          "crond -f -d 8"          2 months ago        Up 2 hours                                                                                                          cyphondock_geoip_1
docker exec -t -i cyphondock_logstash_1 /bin/bash
/usr/share/logstash/bin/logstash-plugin install <plugin_name>
docker stop cyphondock_logstash_1
docker start cyphondock_logstash_1
docker-compose start
docker exec -t -i cyphondock_cyphon_1 sh
``

# CREATING ALERTS
Shaping Data Panel -> BottleFields : Create fields
@cyhook
Copy link
Author

cyhook commented Oct 10, 2017

kibana

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment