Configure Elasticsearch and filebeat for index Microsoft Internet Information Services (IIS) logs in Ingest mode.
The configuration discussed in this article is for direct sending of IIs Logs via Filebeat to Elasticsearch servers in “ingest” mode, without intermediaries. If you use Logstash you may find the Template and grok filter used in Pipeline useful but the configuration will be different for Logstash.
First we need an Elasticsearch and Kibana running. We are going to see how configure filebeats and necessary pipelines and templates for Internet Information Server.
Required config for IIS
In IIS we need only config log properties for log all fields (select all fields) and in W3C format. It is very important for config to work. All templates and pipelines in this post are configured for this IIS log config.
Attention. Attached at the end of this post there is a zip file with all configuration files.
Continue reading “Configure Elasticsearch and filebeat for index Microsoft Internet Information Services (IIS) logs in Ingest mode.”
MK Livestatus provides a standard API for accessing Nagios data in various programming languages: Python, Perl and C ++.
The API modules and sample documentation is available for use in these languages and is enough to start testing programs. We must have prior knowledge of Accessing Nagios data with “unixcat” and LQL.
Continue reading “MK Livestatus. Get Nagios data with Python API.”
In recent posts we have installed check_mk in Centos / Redhat 6 or Centos / Redhat 7. Installing full check_mk integrates MK Livestatus component although it is also possible to install it separately to access a Nagios standalone data.
The most important thing is to know initially that data can be obtained and the format of these. We will use a utility included with MK Livestatus for Nagios data access, unixcat. Then in another post we will see how to access data through one of the APIs that includes MK Livestatus (Python).
Continue reading “MK Livestatus. Accessing Nagios data with “unixcat” and LQL.”
Notice, 12/10/2015. If you don’t need Nagios 4 and you are happy with Nagios 3 version I think the best option today is test and use Check_MK Raw Edition (CRE). This free edition is easy to install and includes all software in this post updated. The only reason to continue with this post in my opinion is that CRE not include Nagios 4 to date.
This post is a tranlate from original in spanish from www.eldespistado.com
Continue reading “Nagios Core 4 + PNP4Nagios + Check_mk + Nagvis in CentOS 7 – Redhat 7”
Check_mk continues to use to date (December 2014) the old python module for Apache mod_python than is discontinued now. It is a module that started to discard distributions for the more update mod_wsgi module. The more new versions of the most popular linux distros do not include this module so if you need it you’ll have to compile it yourself.
This may change so before compiling looking if there is already a package for your linux distro.
Tests in this posts were made with with SELINUX disabled. Careful with Firewalld so you can access your 80 port too.
Continue reading “Compiling Apache mod_python module for Centos 7 / Redhat 7”
Since 1.2.3i1 version, check_mk include a very interesting plugin to check vSphere ESXi servers. We can read documentation about this fantastic plugin in official check_mk page.
Check_mk vSphere plugin allow to access ESXi data directly from ESXi servers or via vCenter.
Let’s see how to do the configuration of the vSphere ESXi, and vCenter servers check_mk plugin.
Continue reading “Monitoring vSphere ESXi servers with Nagios and check_mk plugins.”
There are many plugins for Nagios for the purpose of monitoring Oracle, from simple tnsping to monitor listener response to various possibilities to monitor the status of tablespaces, instances, disks,…
When we address the need to use Oracle plugins we will always find two possibilities: locally execution (in Oracle server) by a nagios client/agent (NRPE, NSClient + +,…) or execution from the Nagios server itself. If we opt for latter, it’s required to install an Oracle client on the Nagios server, ideally Oracle Instant Client which is lighter than the full client. Besides this, most plugins are written in Perl, so you need the Perl modules needed for these to work. In this post we are going to talk about the installation and configuration of Oracle Instant Client and usually required Perl modules. Although focused for distributions Redhat / CentOS also mention how to install on Debian type Linux.
Continue reading “Install Oracle Instant Client and DBD Oracle perl modules in Linux (Redhat, Centos, Debian,Ubuntu).”
Since Nagios 4 version release there was an important addon update pending. Recently, check_mk released its innovation version check_mk-1.2.5i2 including MK Livestatus with compatibility with Nagios Core 4. We need therefore check_mk-1.2.5i2 or higher to run check_mk with Nagios Core 4.
In aboutmonitoring we are going to build and test a monitoring system with probably the more interesting and powerful utilities for Nagios. We need compile Nagios 4 because there is not packages in usual distros yetand because we prefer the lastest versions for testing. If you are looking for to install same software in Centos 7 look at Nagios Core 4 + PNP4Nagios + Check_mk + Nagvis in CentOS 7 – Redhat 7
Software components used in this test:
Tested with SELINUX disabled!!!
Continue reading “Nagios 4 (core) + Check_mk + pnp4Nagios + Nagvis”