Publicis Sapient Engineering, profile picture
Uploaded byPublicis Sapient Engineering
8,351 views

Journée DevOps : Des dashboards pour tous avec ElasticSearch, Logstash et Kibana

This document presents an overview of monitoring systems and log management using the ELK stack (Elasticsearch, Logstash, Kibana) and related tools. It covers various topics including data input/output in Logstash, configuring Logstash for application logs, system monitoring with Collectd, and JMX monitoring for Java applications. Additionally, it addresses the creation of business intelligence dashboards and the significance of log analysis for understanding user behavior.

Embed presentation

Downloaded 167 times
Des dashboards pour tous avec ELK 10 Juin 2014 Vincent Spiewak - @vspiewak
Introduction
Speaker 3 Vincent Spiewak @vspiewak •5 ans XP •Master TA (UPMC) •http://blog.xebia.fr •@vspiewak
Agenda 4 •Introduction •Logstash •Monitoring Système •Monitoring JMX •Log As A Service •Monitoring Métier / BI •Cluster ELK •Vagrant (démos)
Stack 5 1 2 3 Elasticsearch Stockage ! Kibana Visualisation ! Logstash ETL !
Logstash 6 41 » stdin » file » udp » tcp » rabbitmq » s3 » … 20 » plain » json » line » multiline » dots » msgpack » … 50 » grok » date » drop » mutate » geoip » anonymize » … 55 » stdout » file » udp » tcp » rabbitmq » elasticsearch » … OutputsInputs Codecs Filters
Elasticsearch 7 Schema Free Full Text REST Document Real Time Distributed HA Multi-tenancy
Kibana 8
Dashboards Adaptés 9 Infrastructure » serveur » charge Application » stacktrace » warn, error Business » client » produit Objectifs » résultat » progression DirectionOps Dev Métier
Architecture 10
Logstash
Logstash - Entrée/Sortie 12 input {! stdin {}! }! ! # filters! ! output {! stdout { codec => json }! }!
Logstash - Run 13 $ java -jar logstash.jar agent —f app.conf! 2011-04-19T03:44:01.103Z 55.3.244.1 GET /index.html 15824 0.043! {! "message" => "2011-04-19T03:44:01.103Z GET /index.html 15824 0.043",! "@timestamp" => "2013-11-03T19:48:53.175Z",! "@version" => "1",! "host" => "macbook"! }!
Logstash - Patterns 14 USERNAME [a-zA-Z0-9._-]+! USER %{USERNAME}! INT (?:[+-]?(?:[0-9]+))! WORD bw+b! NOTSPACE S+! DATA .*?! GREEDYDATA .*! HTTPDATE %{MONTHDAY}/%{MONTH}/%{YEAR}:%{TIME} %{INT}! COMBINEDAPACHELOG %{IPORHOST:clientip} … https://github.com/logstash/logstash/blob/master/patterns
Logstash - Filtre Grok 15 2011-04-19T03:44:01.103Z 55.3.244.1 GET /index.html 15824 0.043! 
 filter { grok { match => 
 [ "message", "%{TIMESTAMP_ISO8601:date} %{IP:client} %{WORD:method} %{URIPATHPARAM:uri} %{NUMBER:bytes} %{NUMBER:duration}" ] } }
Filtre Grok - Sortie 16 2011-04-19T03:44:01.103Z 55.3.244.1 GET /index.html 15824 0.043! ! {! "@timestamp" => "2013-12-01T21:19:11.303Z",! "@version" => "1",! "@bytes" => "15824",! "@client" => "55.3.244.1",! "date" => "2011-04-19T03:44:01.103Z",! "@duration" => "0.043",! "host" => "macbookpro",! "message" => "2011-04-19T03:44:01.103Z 55.3.244.1 GET /index.html 15824 0.043",! "method" => "GET",! "uri" => "/index.html",! }!
Filtre Date - @Timestamp 17 filter {! date {! match => [ "date", "ISO8601" ],! }! }!
Filtre Date - @Timestamp 18 {! "@timestamp" => "2011-04-19T03:44:01.103Z",! "@version" => "1",! "@bytes" => "15824",! "@client" => "55.3.244.1",! "date" => "2011-04-19T03:44:01.103Z",! "@duration" => "0.043",! "host" => "macbookpro",! "message" => "2011-04-19T03:44:01.103Z 55.3.244.1 GET /index.html 15824 0.043",! "method" => "GET",! "uri" => "/index.html",! }
Sortie Elasticsearch 19
Filtres 20 •ajout d’un champ / type / tag •suppression d’un champ •split d’un champ •conversion de type (string, int, float) •IP => géolocation •UA => device, browser, os, versions •conditions •etc…
Logstash - Sortie Elasticsearch 21 •host •port •cluster •index => "logstash-%{+YYYY.MM.dd}" •protocol •…
Monitoring Système
Monitoring Système: Collectd 23 UDP 25826
Collectd - Plugins 24 •cpu (jiffies) •process •users •disk •memory •swap •network •Java / JMX •MySQL •…
Collectd - Configuration 25 FQDNLookup true LoadPlugin syslog <Plugin syslog> LogLevel info </Plugin> LoadPlugin cpu LoadPlugin df LoadPlugin disk LoadPlugin entropy LoadPlugin interface LoadPlugin irq LoadPlugin load LoadPlugin memory LoadPlugin network LoadPlugin processes LoadPlugin rrdtool LoadPlugin swap LoadPlugin users <Plugin interface> Interface "eth0" IgnoreSelected false </Plugin> <Plugin network> <Server "127.0.0.1" "25826"> </Server> </Plugin> <Plugin rrdtool> DataDir "/var/lib/collectd/rrd" </Plugin> Include "/etc/collectd/filters.conf" Include "/etc/collectd/thresholds.conf"
Collectd - Logstash Conf 26 input { collectd { host => "127.0.0.1" } } ! output { elasticsearch {} }
Elasticsearch - Samples 27 { "@version": "1", "@timestamp": "2014-06-09T23:01:11.000Z", "host": "precise64", "plugin": "memory", "collectd_type": "memory", "type_instance": "cached", "value": 267845632 } ! { "@version": "1", "@timestamp": "2014-06-09T23:01:11.000Z", "host": "precise64", "plugin": "memory", "collectd_type": "memory", "type_instance": "used", "value": 703348736 }
system-survey Monitoring Système 28 Démo
system-survey Monitoring Système 29
Monitoring JMX
Monitoring JMX: Collectd JMX 31 PORT 25826
Collectd - Setup Java & JMX 32 ! ! ! ! # check dynamic libraries ! ldd /usr/lib/collectd/java.so ! ! ! ! ! # fix libjvm.so not found error ! ln -s /usr/lib/jvm/java-7-openjdk-amd64/jre/lib/amd64/server/libjvm.so /usr/lib/libjvm.so
JConsole - SystemCpuLoad 33
Collectd - Plugin Java & JMX 34 <Plugin "java"> JVMARG "-Djava.class.path=/usr/share/collectd/java/collectd-api.jar:/usr/share/collectd/java/generic-jmx.jar" LoadPlugin "org.collectd.java.GenericJMX" <Plugin "GenericJMX"> <MBean "os"> ObjectName "java.lang:type=OperatingSystem" ! <Value> Type "gauge" InstancePrefix "system_cpu_load" Attribute "SystemCpuLoad" </Value> ! </MBean> ! <Connection> ServiceURL "service:jmx:rmi:///jndi/rmi://localhost:9010/jmxrmi" Collect "os" </Connection> ! </Plugin> </Plugin>
Elasticsearch - Samples 35 { "@version": "1", "@timestamp": "2014-06-09T23:01:11.000Z", "host": "localhost", "plugin": "GenericJMX", "collectd_type": "gauge", "type_instance": "system_cpu_load", "value": 0.5587837837837838 }
JConsole - HeapMemoryUsage 36
Collectd - JMX - Type Table 37 # Heap memory usage <MBean "memory-heap"> ObjectName "java.lang:type=Memory" #InstanceFrom "" InstancePrefix "memory-heap" # Creates four values: committed, init, max, used <Value> Type "jmx_memory" Table true Attribute "HeapMemoryUsage" </Value> </MBean> !
Collectd - Types 38 ! /usr/share/collectd/types.db ! ! gauge value:GAUGE:U:U ! load shortterm:GAUGE:0:100, midterm:GAUGE:0:100, longterm:GAUGE:0:100 ! percent percent:GAUGE:0:100.1 ! jmx_memory value:GAUGE:0:U
Elasticsearch - Samples 39 { "@version": "1", "@timestamp": "2014-06-09T23:01:11.000Z", "host": "localhost", "plugin": "GenericJMX", "plugin_instance": "memory-heap", "collectd_type": "jmx_memory", "type_instance": "used", "value": 62282808 } ! { "@version": "1", "@timestamp": "2014-06-09T23:01:11.000Z", "host": "localhost", "plugin": "GenericJMX", "plugin_instance": "memory-heap", "collectd_type": "jmx_memory", "type_instance": "init", "value": 104857600 }
Collectd - Custom MBean 40 <MBean "flume-source"> ObjectName "org.apache.flume.source:type=source-1" InstancePrefix "flume-source-1" <Value> Type "gauge" InstancePrefix "event_received_count" Attribute "EventReceivedCount" </Value> <Value> Type "gauge" InstancePrefix "event_accepted_count" Table false Attribute "EventAcceptedCount" </Value> </MBean>
Elasticsearch - Samples 41 { "@version": "1", "@timestamp": "2014-06-09T23:09:41.000Z", "host": "localhost", "plugin": "GenericJMX", "plugin_instance": "flume-source-1", "collectd_type": "gauge", "type_instance": "event_accepted_count", "value": 1246501 }
Flume JMX Monitoring JVM / JMX 42 Démo
Flume JMX Monitoring JVM / JMX 43
Log As Service
Log As A Service: SyslogAppender 45 PORT 5514
SyslogAppender Log As A Service - Logback 46
Logstash - Syslog configuration 47 input { udp { port => "5514" } } ! filter { grok { patterns_dir => "./patterns" match => ["message","%{LOGBACK_SYSLOG}"] } } ! filter { date { match => ["log_date","dd-MM-YYYY HH:mm:ss.SSS"] } } ! output { elasticsearch {} }
Logstash - Pattern 48 ! ! ! ! LOG_DATE %{MONTHDAY}-%{MONTHNUM}-%{YEAR} %{HOUR}:%{MINUTE}:%{SECOND}.[0-9]{3} ! SYSLOG_BASE %{SYSLOG5424PRI}%{SYSLOGTIMESTAMP:syslog_timestamp} %{SYSLOGHOST:syslog_host} SYSLOG %{SYSLOG_BASE} %{GREEDYDATA:syslog_message} ! LOGBACK_SYSLOG_BASE %{SYSLOG_BASE} %{LOG_DATE:log_date} [%{NOTSPACE:thread}] %{LOGLEVEL:log_level} %{NOTSPACE:classname} LOGBACK_SYSLOG %{LOGBACK_SYSLOG_BASE} %{GREEDYDATA:log_msg}
Syslog Monitoring Log 49 Démo
Syslog Monitoring Log 50
Monitoring Métier- BI
Problème GeekShop 52 •Quels sont les produits les plus achetés ? •Quelle est la répartition H/F de mes clients ? •Quels sont mes clients les plus fidèles ? •Combien de femmes à Paris ont acheté un iPod Touch Bleu 32 Go entre le 12 octobre 2012 à 14h30 et le 4 novembre 2013 à 19h ?
GeekShop - Format Logs 53 09-06-2014 21:27:42.228 [pool-32-thread-1] INFO com.github.vspiewak.loggenerator.SearchRequest - id=317&ua=Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/ 534.24&ip=94.228.34.210&category=Mobile! ! 09-06-2014 21:27:42.227 [pool-32-thread-1] INFO com.github.vspiewak.loggenerator.SellRequest - id=313&ua=Mozilla/ 5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.17) Gecko/ 20110420 Firefox/ 3.6.17&ip=202.46.52.35&email=client314@gmail.com&sex=M&brand=Appl e&name=iPod Touch&model=iPod Touch - Jaune - Disque 32Go&category=Baladeur&color=Jaune&options=Disque 32Go&price=329.0
GeekShop - Après Logstash 54 {! "_index": "logstash-2014.06.09",! "_type": "app-log",! "_id": "gaQXRn9mROiAGjhBZ2h2Og",! "_version": 1,! "found": true,! "_source": {! "message": "09-06-2014 21:27:42.228 [pool-32-thread-1] INFO com.github.vspiewak.loggenerator.SearchRequest - id=317&ua=Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24&ip=94.228.34.210&category=Mobile",! "@version": "1",! "@timestamp": "2014-06-09T19:27:42.228Z",! "type": "app-log",! "host": "precise64",! "path": "/home/vagrant/app.log",! "log_date": "09-06-2014 21:27:42.228",! "thread": "pool-32-thread-1",! "log_level": "INFO",! "classname": "com.github.vspiewak.loggenerator.SearchRequest",! "log_msg": "- id=317&ua=Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/ 534.24&ip=94.228.34.210&category=Mobile",! "id": 317,! "ua": "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24",! "ip": "94.228.34.210",! "category": "Mobile",! "tags": [! "search"! ],! "geoip": {! "ip": "94.228.34.210",! "country_code2": "GB",! "country_code3": "GBR",! "country_name": "United Kingdom",! "continent_code": "EU",! "latitude": 51.5,! "longitude": -0.12999999999999545,! "timezone": "Europe/London",! "location": [! -0.12999999999999545,! 51.5! ]! },! "useragent": {! "name": "Chrome",! "os": "Linux",! "os_name": "Linux",! "device": "Other",! "major": "11",! "minor": "0",! "patch": "696"! }! }! }
Kibana: Terms & Analysers 55
Change analyser on specific indexes & fields Elasticsearch Template Mapping 56 curl -XPUT http://localhost:9200/_template/logstash_per_index -d '{ "template" : "logstash*",! "mappings" : { ! "_default_" : {! "properties" : {! "@timestamp": { "type": "date", "index": "not_analyzed" },! "ip": { "type" : "ip", "index": "not_analyzed" },! "name": { "type" : "string", "index": "not_analyzed" },! "options": { "type" : "string", "index": "not_analyzed" },! "email": { "type" : "string", "index": "not_analyzed" }! } ! }! }! }'
eshop-survey Monitoring Métier / Business 57 Démo
eshop-survey Monitoring Métier / Business 58
eshop-survey Monitoring Métier / Business 59
Cluster ELK
Elasticsearch - Feedbacks 61 ! •The Guardian: social network - real time feedback ! •StackOverflow: full-text search with geolocation and « more like » ! •Goldman Sacks: 5TB logs/day + analysis stock market ! •…
Elasticsearch - NoSQL 62 SQL Partitions DB Table Ligne Colonne ES Cluster Indices Type Document Champ
Elasticsearch - Types de noeuds 63 ! •master •data •search
Elasticsearch - Shard & Replica 64 ! •shards → +indexing, +distribution (one-time setting) ! •replicas → +search, +availability
Elasticsearch - Health 65 ! •GREEN → all primaries/replicas shards active •YELLOW → all primaries shards active •RED → not all primaries shards
Cluster Elasticsearch 66 http://www.cubrid.org/blog/dev-platform/our-experience-creating-large-scale-log-search-system-using-elasticsearch/
es-cluster Cluster Elasticsearch 67 Démo
Vagrant (Démos)
Pré-requis Démo 69 ! Virtual Box ! ! ! Vagrant

 ! ! ! Git *
Démo @ Home 70 ! ! • https://github.com/vspiewak/elk-devops-day-2014 ! $ tree -L 1 . . "## README.md "## demo-all "## es-cluster "## eshop-survey "## flume-jmx "## slides "## syslog $## system-survey
Vagrant - Shortcuts 71 ! • cd demo-all ! • vagrant up • vagrant ssh • sudo jconsole • vagrant halt* • vagrant destroy
Vagrant VM 72 ! • config.vm.box = "hashicorp/precise64" ! • config.vm.network "forwarded_port", guest: 80, host: 10080 • config.vm.network "forwarded_port", guest: 9200, host: 19200 ! • config.ssh.forward_x11 = true ! • vb.customize ["modifyvm", :id, "--ioapic", "on", "--cpuexecutioncap", "40", "-- cpus", "2", "--memory", "1024" ] ! • bootstrap.sh
Questions ? 73 THANK YOUFOR watching

More Related Content

PPT
ELK stack at weibo.com
by琛琳 饶
 
PPT
Logstash
by琛琳 饶
 
PDF
Logstash-Elasticsearch-Kibana
bydknx01
 
PPTX
Managing Your Security Logs with Elasticsearch
byVic Hargrave
 
PPTX
Elk stack
byJilles van Gurp
 
PDF
Advanced troubleshooting linux performance
byForthscale
 
PDF
Logstash: Get to know your logs
bySmartLogic
 
PDF
LogStash in action
byManuj Aggarwal
 
ELK stack at weibo.com
by琛琳 饶
 
Logstash
by琛琳 饶
 
Logstash-Elasticsearch-Kibana
bydknx01
 
Managing Your Security Logs with Elasticsearch
byVic Hargrave
 
Elk stack
byJilles van Gurp
 
Advanced troubleshooting linux performance
byForthscale
 
Logstash: Get to know your logs
bySmartLogic
 
LogStash in action
byManuj Aggarwal
 

What's hot

PPTX
ELK Stack
byPhuc Nguyen
 
PPTX
Customer Intelligence: Using the ELK Stack to Analyze ForgeRock OpenAM Audit ...
byForgeRock
 
PDF
Null Bachaav - May 07 Attack Monitoring workshop.
byPrajal Kulkarni
 
PDF
Central LogFile Storage. ELK stack Elasticsearch, Logstash and Kibana.
byAirat Khisamov
 
PDF
Mobile Analytics mit Elasticsearch und Kibana
byinovex GmbH
 
PPT
Large Scale Log collection using LogStash & mongoDB
byGaurav Bhardwaj
 
PDF
Application Logging With The ELK Stack
bybenwaine
 
PDF
Monitoring with Graylog - a modern approach to monitoring?
byinovex GmbH
 
PPTX
MySQL Slow Query log Monitoring using Beats & ELK
byYoungHeon (Roy) Kim
 
ODP
Using Logstash, elasticsearch & kibana
byAlejandro E Brito Monedero
 
PPT
How ElasticSearch lives in my DevOps life
by琛琳 饶
 
PDF
Elk scilifelab
byGuillermo Carrasco Hernández
 
PDF
Logstash + Elasticsearch + Kibana Presentation on Startit Tech Meetup
byStartit
 
PPT
'Scalable Logging and Analytics with LogStash'
byCloud Elements
 
PDF
elk_stack_alexander_szalonnas
byAlexander Szalonnas
 
PDF
Docker Monitoring Webinar
bySematext Group, Inc.
 
PDF
Logstash family introduction
byOwen Wu
 
PPT
{{more}} Kibana4
by琛琳 饶
 
PDF
Machine Learning in a Twitter ETL using ELK
byhypto
 
PDF
Logging logs with Logstash - Devops MK 10-02-2016
bySteve Howe
 
ELK Stack
byPhuc Nguyen
 
Customer Intelligence: Using the ELK Stack to Analyze ForgeRock OpenAM Audit ...
byForgeRock
 
Null Bachaav - May 07 Attack Monitoring workshop.
byPrajal Kulkarni
 
Central LogFile Storage. ELK stack Elasticsearch, Logstash and Kibana.
byAirat Khisamov
 
Mobile Analytics mit Elasticsearch und Kibana
byinovex GmbH
 
Large Scale Log collection using LogStash & mongoDB
byGaurav Bhardwaj
 
Application Logging With The ELK Stack
bybenwaine
 
Monitoring with Graylog - a modern approach to monitoring?
byinovex GmbH
 
MySQL Slow Query log Monitoring using Beats & ELK
byYoungHeon (Roy) Kim
 
Using Logstash, elasticsearch & kibana
byAlejandro E Brito Monedero
 
How ElasticSearch lives in my DevOps life
by琛琳 饶
 
Elk scilifelab
byGuillermo Carrasco Hernández
 
Logstash + Elasticsearch + Kibana Presentation on Startit Tech Meetup
byStartit
 
'Scalable Logging and Analytics with LogStash'
byCloud Elements
 
elk_stack_alexander_szalonnas
byAlexander Szalonnas
 
Docker Monitoring Webinar
bySematext Group, Inc.
 
Logstash family introduction
byOwen Wu
 
{{more}} Kibana4
by琛琳 饶
 
Machine Learning in a Twitter ETL using ELK
byhypto
 
Logging logs with Logstash - Devops MK 10-02-2016
bySteve Howe
 

Similar to Journée DevOps : Des dashboards pour tous avec ElasticSearch, Logstash et Kibana

PDF
ELK stack introduction
byabenyeung1
 
PPTX
Centralized log-management-with-elastic-stack
byRich Lee
 
PPTX
Attack monitoring using ElasticSearch Logstash and Kibana
byPrajal Kulkarni
 
PDF
Log analysis with the elk stack
byVikrant Chauhan
 
PPTX
Centralized Logging System Using ELK Stack
byRohit Sharma
 
PPTX
Elastic Stack Introduction
byVikram Shinde
 
PPTX
Log management with ELK
byGeert Pante
 
PDF
DIY Netflow Data Analytic with ELK Stack by CL Lee
byMyNOG
 
PDF
Log analysis with elastic stack
byBangladesh Network Operators Group
 
PDF
Security Monitoring for big Infrastructures without a Million Dollar budget
byJuan Berner
 
PPTX
MySQL Audit using Percona audit plugin and ELK
byYoungHeon (Roy) Kim
 
PPTX
Introduction to Monitoring Tools for DevOps
byPuneet Kumar Bhatia (MBA, ITIL V3 Certified)
 
PPTX
Introduction to Monitoring Tools for DevOps
byPuneet Kumar Bhatia (MBA, ITIL V3 Certified)
 
PDF
Mulesoft ELK
byIntegration Assistance
 
PDF
"How about no grep and zabbix?". ELK based alerts and metrics.
byVladimir Pavkin
 
PPTX
Scaling an ELK stack at bol.com
byRenzo Tomà
 
KEY
London devops logging
byTomas Doran
 
PDF
2015 03-16-elk at-bsides
byJeremy Cohoe
 
PDF
Eko10 - Security Monitoring for Big Infrastructures without a Million Dollar ...
byHernan Costante
 
PDF
Scaling ELK Stack - DevOpsDays Singapore
byAngad Singh
 
ELK stack introduction
byabenyeung1
 
Centralized log-management-with-elastic-stack
byRich Lee
 
Attack monitoring using ElasticSearch Logstash and Kibana
byPrajal Kulkarni
 
Log analysis with the elk stack
byVikrant Chauhan
 
Centralized Logging System Using ELK Stack
byRohit Sharma
 
Elastic Stack Introduction
byVikram Shinde
 
Log management with ELK
byGeert Pante
 
DIY Netflow Data Analytic with ELK Stack by CL Lee
byMyNOG
 
Log analysis with elastic stack
byBangladesh Network Operators Group
 
Security Monitoring for big Infrastructures without a Million Dollar budget
byJuan Berner
 
MySQL Audit using Percona audit plugin and ELK
byYoungHeon (Roy) Kim
 
Introduction to Monitoring Tools for DevOps
byPuneet Kumar Bhatia (MBA, ITIL V3 Certified)
 
Introduction to Monitoring Tools for DevOps
byPuneet Kumar Bhatia (MBA, ITIL V3 Certified)
 
Mulesoft ELK
byIntegration Assistance
 
"How about no grep and zabbix?". ELK based alerts and metrics.
byVladimir Pavkin
 
Scaling an ELK stack at bol.com
byRenzo Tomà
 
London devops logging
byTomas Doran
 
2015 03-16-elk at-bsides
byJeremy Cohoe
 
Eko10 - Security Monitoring for Big Infrastructures without a Million Dollar ...
byHernan Costante
 
Scaling ELK Stack - DevOpsDays Singapore
byAngad Singh
 

More from Publicis Sapient Engineering

PDF
XebiCon'18 - Utiliser Hyperledger Fabric pour la création d'une blockchain pr...
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - La Web App d'aujourd'hui et de demain : état de l'art et bleedin...
byPublicis Sapient Engineering
 
PDF
Xebicon'18 - Spark in jail : conteneurisez vos traitements data sans serveur
byPublicis Sapient Engineering
 
PDF
Xebicon'18 - IoT: From Edge to Cloud
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Event Sourcing et RGPD, incompatibles ?
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - L'algorithme de reconnaissance de formes par le cerveau humain
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Architecturer son application mobile pour la durabilité
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Deno, le nouveau NodeJS qui inverse la tendance ?
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Modern Infrastructure
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Comment j'ai développé un jeu vidéo avec des outils de développe...
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Des notebook pour le monitoring avec Zeppelin
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Boostez vos modèles avec du Deep Learning distribué
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Sécuriser son API avec OpenID Connect
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - La sécurité, douce illusion même en 2018
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Les utilisateurs finaux, les oubliés de nos produits !
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Spark NLP, un an après
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Le développeur dans la Pop Culture
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Comment fausser l'interprétation de vos résultats avec des dataviz
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Ce que l'histoire du métro Parisien m'a enseigné sur la création...
byPublicis Sapient Engineering
 
PDF
XebiCon'18 - Structuration du Temps et Dynamique de Groupes, Théorie organisa...
byPublicis Sapient Engineering
 
XebiCon'18 - Utiliser Hyperledger Fabric pour la création d'une blockchain pr...
byPublicis Sapient Engineering
 
XebiCon'18 - La Web App d'aujourd'hui et de demain : état de l'art et bleedin...
byPublicis Sapient Engineering
 
Xebicon'18 - Spark in jail : conteneurisez vos traitements data sans serveur
byPublicis Sapient Engineering
 
Xebicon'18 - IoT: From Edge to Cloud
byPublicis Sapient Engineering
 
XebiCon'18 - Event Sourcing et RGPD, incompatibles ?
byPublicis Sapient Engineering
 
XebiCon'18 - L'algorithme de reconnaissance de formes par le cerveau humain
byPublicis Sapient Engineering
 
XebiCon'18 - Architecturer son application mobile pour la durabilité
byPublicis Sapient Engineering
 
XebiCon'18 - Deno, le nouveau NodeJS qui inverse la tendance ?
byPublicis Sapient Engineering
 
XebiCon'18 - Modern Infrastructure
byPublicis Sapient Engineering
 
XebiCon'18 - Comment j'ai développé un jeu vidéo avec des outils de développe...
byPublicis Sapient Engineering
 
XebiCon'18 - Des notebook pour le monitoring avec Zeppelin
byPublicis Sapient Engineering
 
XebiCon'18 - Boostez vos modèles avec du Deep Learning distribué
byPublicis Sapient Engineering
 
XebiCon'18 - Sécuriser son API avec OpenID Connect
byPublicis Sapient Engineering
 
XebiCon'18 - La sécurité, douce illusion même en 2018
byPublicis Sapient Engineering
 
XebiCon'18 - Les utilisateurs finaux, les oubliés de nos produits !
byPublicis Sapient Engineering
 
XebiCon'18 - Spark NLP, un an après
byPublicis Sapient Engineering
 
XebiCon'18 - Le développeur dans la Pop Culture
byPublicis Sapient Engineering
 
XebiCon'18 - Comment fausser l'interprétation de vos résultats avec des dataviz
byPublicis Sapient Engineering
 
XebiCon'18 - Ce que l'histoire du métro Parisien m'a enseigné sur la création...
byPublicis Sapient Engineering
 
XebiCon'18 - Structuration du Temps et Dynamique de Groupes, Théorie organisa...
byPublicis Sapient Engineering
 

Recently uploaded

PDF
Constraints First - Why Our On-Prem Ticketing System Starts With Limits, Not ...
bySpirit Face
 
PDF
Microservices-Final !!!!!!!!!!!!!!!!.pdf
bydoquangminh962004
 
PPTX
Road_Quality_Indicator using deeplearning algorithms and computer vision
byDHARUNPRASHOBMM
 
PPTX
Computer_Virus_Presentation_With_Slide7.pptx
byHEVISLIVE
 
PPTX
Code Assessment Tools .pptx
byCodexpro
 
PPTX
NSF Converter Software to Convert NSF to PST, EML, MSG
byNSF Converter Software
 
PDF
How NetSuite Cloud ERP Helps Businesses Overcome Legacy System Downtime.
byTechWize
 
PDF
Revolutionising-SQL-Data-Modelling-with-SqlDBM.pdf
bySQL DBM
 
PDF
Kiến trúc hướng dịch vụ UET!!!!!!!!!!!!!!!!!!!!!!!
bydoquangminh962004
 
PPTX
Lecture 3 - Scheduling - Operating System
bynurulalomador
 
PDF
Cloud-Based Underwriting Software for Insurance
byInsurance Tech Services
 
PPTX
Python-Functions-A-Comprehensive-Overview.pptx
byMuhammad Fahad Bashir
 
PDF
Solved First Semester B.C.A. C Programming Question Paper – Jan/Feb 2025
byKuvempu University
 
PDF
TNG_Architecting Green Software - An Introduction_Nils-Oliver Linden&Alexande...
byQAware GmbH
 
PDF
Cybersecurity Alert- What Organisations Must Watch Out For This Christmas Fes...
byCybernetic Global Intelligence
 
PPTX
SAP FICO Training Agenda for new learners
bysasidhar unnagiri
 
PPTX
Week 7 Introduction to HTML PowerPoint Notes.pptx
bylesandawelgens
 
PPTX
Membershipanywhere - Digital Membership Card - USA , Canada, Australia.pptx
bymembershipanywhere
 
PDF
DSD-INT 2025 Integrating Nature-Based Solutions into Hydrological Models A Li...
byDeltares
 
PDF
Virtual Study Circles Innovative Ways to Collaborate Online.pdf
byExplain Learning
 
Constraints First - Why Our On-Prem Ticketing System Starts With Limits, Not ...
bySpirit Face
 
Microservices-Final !!!!!!!!!!!!!!!!.pdf
bydoquangminh962004
 
Road_Quality_Indicator using deeplearning algorithms and computer vision
byDHARUNPRASHOBMM
 
Computer_Virus_Presentation_With_Slide7.pptx
byHEVISLIVE
 
Code Assessment Tools .pptx
byCodexpro
 
NSF Converter Software to Convert NSF to PST, EML, MSG
byNSF Converter Software
 
How NetSuite Cloud ERP Helps Businesses Overcome Legacy System Downtime.
byTechWize
 
Revolutionising-SQL-Data-Modelling-with-SqlDBM.pdf
bySQL DBM
 
Kiến trúc hướng dịch vụ UET!!!!!!!!!!!!!!!!!!!!!!!
bydoquangminh962004
 
Lecture 3 - Scheduling - Operating System
bynurulalomador
 
Cloud-Based Underwriting Software for Insurance
byInsurance Tech Services
 
Python-Functions-A-Comprehensive-Overview.pptx
byMuhammad Fahad Bashir
 
Solved First Semester B.C.A. C Programming Question Paper – Jan/Feb 2025
byKuvempu University
 
TNG_Architecting Green Software - An Introduction_Nils-Oliver Linden&Alexande...
byQAware GmbH
 
Cybersecurity Alert- What Organisations Must Watch Out For This Christmas Fes...
byCybernetic Global Intelligence
 
SAP FICO Training Agenda for new learners
bysasidhar unnagiri
 
Week 7 Introduction to HTML PowerPoint Notes.pptx
bylesandawelgens
 
Membershipanywhere - Digital Membership Card - USA , Canada, Australia.pptx
bymembershipanywhere
 
DSD-INT 2025 Integrating Nature-Based Solutions into Hydrological Models A Li...
byDeltares
 
Virtual Study Circles Innovative Ways to Collaborate Online.pdf
byExplain Learning
 

Journée DevOps : Des dashboards pour tous avec ElasticSearch, Logstash et Kibana

  • 1.
    Des dashboards pourtous avec ELK 10 Juin 2014 Vincent Spiewak - @vspiewak
  • 2.
  • 3.
    Speaker 3 Vincent Spiewak @vspiewak •5 ansXP •Master TA (UPMC) •http://blog.xebia.fr •@vspiewak
  • 4.
    Agenda 4 •Introduction •Logstash •Monitoring Système •Monitoring JMX •LogAs A Service •Monitoring Métier / BI •Cluster ELK •Vagrant (démos)
  • 5.
  • 6.
    Logstash 6 41 » stdin » file »udp » tcp » rabbitmq » s3 » … 20 » plain » json » line » multiline » dots » msgpack » … 50 » grok » date » drop » mutate » geoip » anonymize » … 55 » stdout » file » udp » tcp » rabbitmq » elasticsearch » … OutputsInputs Codecs Filters
  • 7.
    Elasticsearch 7 Schema Free FullText REST Document Real Time Distributed HA Multi-tenancy
  • 8.
  • 9.
    Dashboards Adaptés 9 Infrastructure » serveur » charge Application » stacktrace » warn, error Business » client » produit Objectifs » résultat » progression DirectionOps Dev Métier
  • 10.
  • 11.
  • 12.
    Logstash - Entrée/Sortie 12 input{! stdin {}! }! ! # filters! ! output {! stdout { codec => json }! }!
  • 13.
    Logstash - Run 13 $java -jar logstash.jar agent —f app.conf! 2011-04-19T03:44:01.103Z 55.3.244.1 GET /index.html 15824 0.043! {! "message" => "2011-04-19T03:44:01.103Z GET /index.html 15824 0.043",! "@timestamp" => "2013-11-03T19:48:53.175Z",! "@version" => "1",! "host" => "macbook"! }!
  • 14.
    Logstash - Patterns 14 USERNAME[a-zA-Z0-9._-]+! USER %{USERNAME}! INT (?:[+-]?(?:[0-9]+))! WORD bw+b! NOTSPACE S+! DATA .*?! GREEDYDATA .*! HTTPDATE %{MONTHDAY}/%{MONTH}/%{YEAR}:%{TIME} %{INT}! COMBINEDAPACHELOG %{IPORHOST:clientip} … https://github.com/logstash/logstash/blob/master/patterns
  • 15.
    Logstash - FiltreGrok 15 2011-04-19T03:44:01.103Z 55.3.244.1 GET /index.html 15824 0.043! 
 filter { grok { match => 
 [ "message", "%{TIMESTAMP_ISO8601:date} %{IP:client} %{WORD:method} %{URIPATHPARAM:uri} %{NUMBER:bytes} %{NUMBER:duration}" ] } }
  • 16.
    Filtre Grok -Sortie 16 2011-04-19T03:44:01.103Z 55.3.244.1 GET /index.html 15824 0.043! ! {! "@timestamp" => "2013-12-01T21:19:11.303Z",! "@version" => "1",! "@bytes" => "15824",! "@client" => "55.3.244.1",! "date" => "2011-04-19T03:44:01.103Z",! "@duration" => "0.043",! "host" => "macbookpro",! "message" => "2011-04-19T03:44:01.103Z 55.3.244.1 GET /index.html 15824 0.043",! "method" => "GET",! "uri" => "/index.html",! }!
  • 17.
    Filtre Date -@Timestamp 17 filter {! date {! match => [ "date", "ISO8601" ],! }! }!
  • 18.
    Filtre Date -@Timestamp 18 {! "@timestamp" => "2011-04-19T03:44:01.103Z",! "@version" => "1",! "@bytes" => "15824",! "@client" => "55.3.244.1",! "date" => "2011-04-19T03:44:01.103Z",! "@duration" => "0.043",! "host" => "macbookpro",! "message" => "2011-04-19T03:44:01.103Z 55.3.244.1 GET /index.html 15824 0.043",! "method" => "GET",! "uri" => "/index.html",! }
  • 19.
  • 20.
    Filtres 20 •ajout d’un champ/ type / tag •suppression d’un champ •split d’un champ •conversion de type (string, int, float) •IP => géolocation •UA => device, browser, os, versions •conditions •etc…
  • 21.
    Logstash - SortieElasticsearch 21 •host •port •cluster •index => "logstash-%{+YYYY.MM.dd}" •protocol •…
  • 22.
  • 23.
  • 24.
    Collectd - Plugins 24 •cpu(jiffies) •process •users •disk •memory •swap •network •Java / JMX •MySQL •…
  • 25.
    Collectd - Configuration 25 FQDNLookuptrue LoadPlugin syslog <Plugin syslog> LogLevel info </Plugin> LoadPlugin cpu LoadPlugin df LoadPlugin disk LoadPlugin entropy LoadPlugin interface LoadPlugin irq LoadPlugin load LoadPlugin memory LoadPlugin network LoadPlugin processes LoadPlugin rrdtool LoadPlugin swap LoadPlugin users <Plugin interface> Interface "eth0" IgnoreSelected false </Plugin> <Plugin network> <Server "127.0.0.1" "25826"> </Server> </Plugin> <Plugin rrdtool> DataDir "/var/lib/collectd/rrd" </Plugin> Include "/etc/collectd/filters.conf" Include "/etc/collectd/thresholds.conf"
  • 26.
    Collectd - LogstashConf 26 input { collectd { host => "127.0.0.1" } } ! output { elasticsearch {} }
  • 27.
    Elasticsearch - Samples 27 { "@version":"1", "@timestamp": "2014-06-09T23:01:11.000Z", "host": "precise64", "plugin": "memory", "collectd_type": "memory", "type_instance": "cached", "value": 267845632 } ! { "@version": "1", "@timestamp": "2014-06-09T23:01:11.000Z", "host": "precise64", "plugin": "memory", "collectd_type": "memory", "type_instance": "used", "value": 703348736 }
  • 28.
  • 29.
  • 30.
  • 31.
    Monitoring JMX: CollectdJMX 31 PORT 25826
  • 32.
    Collectd - SetupJava & JMX 32 ! ! ! ! # check dynamic libraries ! ldd /usr/lib/collectd/java.so ! ! ! ! ! # fix libjvm.so not found error ! ln -s /usr/lib/jvm/java-7-openjdk-amd64/jre/lib/amd64/server/libjvm.so /usr/lib/libjvm.so
  • 33.
  • 34.
    Collectd - PluginJava & JMX 34 <Plugin "java"> JVMARG "-Djava.class.path=/usr/share/collectd/java/collectd-api.jar:/usr/share/collectd/java/generic-jmx.jar" LoadPlugin "org.collectd.java.GenericJMX" <Plugin "GenericJMX"> <MBean "os"> ObjectName "java.lang:type=OperatingSystem" ! <Value> Type "gauge" InstancePrefix "system_cpu_load" Attribute "SystemCpuLoad" </Value> ! </MBean> ! <Connection> ServiceURL "service:jmx:rmi:///jndi/rmi://localhost:9010/jmxrmi" Collect "os" </Connection> ! </Plugin> </Plugin>
  • 35.
    Elasticsearch - Samples 35 { "@version":"1", "@timestamp": "2014-06-09T23:01:11.000Z", "host": "localhost", "plugin": "GenericJMX", "collectd_type": "gauge", "type_instance": "system_cpu_load", "value": 0.5587837837837838 }
  • 36.
  • 37.
    Collectd - JMX- Type Table 37 # Heap memory usage <MBean "memory-heap"> ObjectName "java.lang:type=Memory" #InstanceFrom "" InstancePrefix "memory-heap" # Creates four values: committed, init, max, used <Value> Type "jmx_memory" Table true Attribute "HeapMemoryUsage" </Value> </MBean> !
  • 38.
    Collectd - Types 38 ! /usr/share/collectd/types.db ! ! gaugevalue:GAUGE:U:U ! load shortterm:GAUGE:0:100, midterm:GAUGE:0:100, longterm:GAUGE:0:100 ! percent percent:GAUGE:0:100.1 ! jmx_memory value:GAUGE:0:U
  • 39.
    Elasticsearch - Samples 39 { "@version":"1", "@timestamp": "2014-06-09T23:01:11.000Z", "host": "localhost", "plugin": "GenericJMX", "plugin_instance": "memory-heap", "collectd_type": "jmx_memory", "type_instance": "used", "value": 62282808 } ! { "@version": "1", "@timestamp": "2014-06-09T23:01:11.000Z", "host": "localhost", "plugin": "GenericJMX", "plugin_instance": "memory-heap", "collectd_type": "jmx_memory", "type_instance": "init", "value": 104857600 }
  • 40.
    Collectd - CustomMBean 40 <MBean "flume-source"> ObjectName "org.apache.flume.source:type=source-1" InstancePrefix "flume-source-1" <Value> Type "gauge" InstancePrefix "event_received_count" Attribute "EventReceivedCount" </Value> <Value> Type "gauge" InstancePrefix "event_accepted_count" Table false Attribute "EventAcceptedCount" </Value> </MBean>
  • 41.
    Elasticsearch - Samples 41 { "@version":"1", "@timestamp": "2014-06-09T23:09:41.000Z", "host": "localhost", "plugin": "GenericJMX", "plugin_instance": "flume-source-1", "collectd_type": "gauge", "type_instance": "event_accepted_count", "value": 1246501 }
  • 42.
  • 43.
  • 44.
  • 45.
    Log As AService: SyslogAppender 45 PORT 5514
  • 46.
    SyslogAppender Log As AService - Logback 46
  • 47.
    Logstash - Syslogconfiguration 47 input { udp { port => "5514" } } ! filter { grok { patterns_dir => "./patterns" match => ["message","%{LOGBACK_SYSLOG}"] } } ! filter { date { match => ["log_date","dd-MM-YYYY HH:mm:ss.SSS"] } } ! output { elasticsearch {} }
  • 48.
    Logstash - Pattern 48 ! ! ! ! LOG_DATE%{MONTHDAY}-%{MONTHNUM}-%{YEAR} %{HOUR}:%{MINUTE}:%{SECOND}.[0-9]{3} ! SYSLOG_BASE %{SYSLOG5424PRI}%{SYSLOGTIMESTAMP:syslog_timestamp} %{SYSLOGHOST:syslog_host} SYSLOG %{SYSLOG_BASE} %{GREEDYDATA:syslog_message} ! LOGBACK_SYSLOG_BASE %{SYSLOG_BASE} %{LOG_DATE:log_date} [%{NOTSPACE:thread}] %{LOGLEVEL:log_level} %{NOTSPACE:classname} LOGBACK_SYSLOG %{LOGBACK_SYSLOG_BASE} %{GREEDYDATA:log_msg}
  • 49.
  • 50.
  • 51.
  • 52.
    Problème GeekShop 52 •Quels sont lesproduits les plus achetés ? •Quelle est la répartition H/F de mes clients ? •Quels sont mes clients les plus fidèles ? •Combien de femmes à Paris ont acheté un iPod Touch Bleu 32 Go entre le 12 octobre 2012 à 14h30 et le 4 novembre 2013 à 19h ?
  • 53.
    GeekShop - FormatLogs 53 09-06-2014 21:27:42.228 [pool-32-thread-1] INFO com.github.vspiewak.loggenerator.SearchRequest - id=317&ua=Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/ 534.24&ip=94.228.34.210&category=Mobile! ! 09-06-2014 21:27:42.227 [pool-32-thread-1] INFO com.github.vspiewak.loggenerator.SellRequest - id=313&ua=Mozilla/ 5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.17) Gecko/ 20110420 Firefox/ 3.6.17&ip=202.46.52.35&email=client314@gmail.com&sex=M&brand=Appl e&name=iPod Touch&model=iPod Touch - Jaune - Disque 32Go&category=Baladeur&color=Jaune&options=Disque 32Go&price=329.0
  • 54.
    GeekShop - AprèsLogstash 54 {! "_index": "logstash-2014.06.09",! "_type": "app-log",! "_id": "gaQXRn9mROiAGjhBZ2h2Og",! "_version": 1,! "found": true,! "_source": {! "message": "09-06-2014 21:27:42.228 [pool-32-thread-1] INFO com.github.vspiewak.loggenerator.SearchRequest - id=317&ua=Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24&ip=94.228.34.210&category=Mobile",! "@version": "1",! "@timestamp": "2014-06-09T19:27:42.228Z",! "type": "app-log",! "host": "precise64",! "path": "/home/vagrant/app.log",! "log_date": "09-06-2014 21:27:42.228",! "thread": "pool-32-thread-1",! "log_level": "INFO",! "classname": "com.github.vspiewak.loggenerator.SearchRequest",! "log_msg": "- id=317&ua=Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/ 534.24&ip=94.228.34.210&category=Mobile",! "id": 317,! "ua": "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/534.24 (KHTML, like Gecko) Chrome/11.0.696.65 Safari/534.24",! "ip": "94.228.34.210",! "category": "Mobile",! "tags": [! "search"! ],! "geoip": {! "ip": "94.228.34.210",! "country_code2": "GB",! "country_code3": "GBR",! "country_name": "United Kingdom",! "continent_code": "EU",! "latitude": 51.5,! "longitude": -0.12999999999999545,! "timezone": "Europe/London",! "location": [! -0.12999999999999545,! 51.5! ]! },! "useragent": {! "name": "Chrome",! "os": "Linux",! "os_name": "Linux",! "device": "Other",! "major": "11",! "minor": "0",! "patch": "696"! }! }! }
  • 55.
    Kibana: Terms &Analysers 55
  • 56.
    Change analyser onspecific indexes & fields Elasticsearch Template Mapping 56 curl -XPUT http://localhost:9200/_template/logstash_per_index -d '{ "template" : "logstash*",! "mappings" : { ! "_default_" : {! "properties" : {! "@timestamp": { "type": "date", "index": "not_analyzed" },! "ip": { "type" : "ip", "index": "not_analyzed" },! "name": { "type" : "string", "index": "not_analyzed" },! "options": { "type" : "string", "index": "not_analyzed" },! "email": { "type" : "string", "index": "not_analyzed" }! } ! }! }! }'
  • 57.
  • 58.
  • 59.
  • 60.
  • 61.
    Elasticsearch - Feedbacks 61 ! •TheGuardian: social network - real time feedback ! •StackOverflow: full-text search with geolocation and « more like » ! •Goldman Sacks: 5TB logs/day + analysis stock market ! •…
  • 62.
    Elasticsearch - NoSQL 62 SQLPartitions DB Table Ligne Colonne ES Cluster Indices Type Document Champ
  • 63.
    Elasticsearch - Typesde noeuds 63 ! •master •data •search
  • 64.
    Elasticsearch - Shard& Replica 64 ! •shards → +indexing, +distribution (one-time setting) ! •replicas → +search, +availability
  • 65.
    Elasticsearch - Health 65 ! •GREEN→ all primaries/replicas shards active •YELLOW → all primaries shards active •RED → not all primaries shards
  • 66.
  • 67.
  • 68.
  • 69.
  • 70.
    Démo @ Home 70 ! ! •https://github.com/vspiewak/elk-devops-day-2014 ! $ tree -L 1 . . "## README.md "## demo-all "## es-cluster "## eshop-survey "## flume-jmx "## slides "## syslog $## system-survey
  • 71.
    Vagrant - Shortcuts 71 ! •cd demo-all ! • vagrant up • vagrant ssh • sudo jconsole • vagrant halt* • vagrant destroy
  • 72.
    Vagrant VM 72 ! • config.vm.box= "hashicorp/precise64" ! • config.vm.network "forwarded_port", guest: 80, host: 10080 • config.vm.network "forwarded_port", guest: 9200, host: 19200 ! • config.ssh.forward_x11 = true ! • vb.customize ["modifyvm", :id, "--ioapic", "on", "--cpuexecutioncap", "40", "-- cpus", "2", "--memory", "1024" ] ! • bootstrap.sh
  • 73.