In a previous post, I’ve introduced the ELK stack powered by Docker & Fig (see the ELK stack powered by Docker).
I’ve recently decided to update the project to replace the usage of fig with compose and to replace all my custom images with the latest official images !
It is now based on the following Docker images available on Dockerhub:
- elasticsearch: Latest version of Elasticsearch
- logstash: Latest version of Logstash
- kibana: Latest version of Kibana 4
01/11/2015 : Project updated !
As the project is based on the latest Docker images versions, it means Elasticsearch 2.x, Logstash 2.x and Kibana 4.2.x ! Feel free to discover the new features of these releases (have a look here: https://www.elastic.co/blog/release-we-have).
Note: For the nostalgic folks, you can still access the 1.x version (Elasticsearch 1.x, Logstash 1.x and Kibana 4.1.x) on the 1.x branch ! Here it is: https://github.com/deviantony/docker-elk/tree/1.x
The following installation procedures have been tested on Ubuntu 14.04.
Use the following command to install Docker:
$ curl -sSL https://get.docker.com/ubuntu/ | sudo sh
Docker Compose installation
Follow the procedure available at https://docs.docker.com/compose/install/ to install the latest version of Docker Compose.
Use the stack
First, you’ll need to checkout the git repository:
$ git clone https://github.com/deviantony/docker-elk.git
By default, the stack is shipped with a simple Logstash configuration, it will listen for any TCP input on port 5000.
Then start the stack using Compose:
$ cd docker-elk $ docker-compose up
Compose will start a container for each service of the ELK stack and output their logs.
If you’re still using the default input configuration for Logstash, you can inject some data into Elasticsearch from a file:
$ nc localhost 5000 &lt; /some/log/file.log
Then you can check the results in Kibana by hitting the following URL in your browser: http://localhost:5601