Kibana + timelion: time series with the elastic stack

•

5 likes•7,611 views

The document discusses Kibana and Timelion, which are tools for visualizing and analyzing time series data in the Elastic Stack. It provides an overview of Kibana's evolution and capabilities for creating dashboards. Timelion is introduced as a scripting language that allows users to transform, aggregate, and calculate on time series data from multiple sources to create visualizations. The document demonstrates Timelion's expression language, which includes functions, combinations, filtering, and attributes to process and render time series graphs.

Software

1
Sylvain Wallez
@bluxte
Kibana + Timelion:
Time series with the
Elastic Stack

2
Agenda
From ELK to Elastic Stack 5.0
Kibana
Timelion
Conclusion
1
2
3
4

4
The Elastic Stack

Elastic Cloud
Security
Monitoring
Aler0ng
Graph
X-Pack
KibanaUser Interface
ElasticsearchStore, Index,
& Analyze
Ingest Logstash Beats
+

5
What’s new in Elastic Stack 5.0 ?
‒ Dimensional fields – speed up and better compression of numerical data
‒ Ingest node – avoids using Logstash for simple setups
‒ Rollover & Shrink API – better handling of non-hot data
‒ Painless – new fast & secure scripting langage
‒ Complete UI redesign
‒ Control center: config, monitoring, dev tools… and dashboards
‒ Timelion: for time series
Unified release, same version number for all products

6
What’s new in Elastic Stack 5.0 ?
• 
‒ Up to 50% faster
‒ Integration with Kafka
‒ New filters
• 
‒ Libbeat – framework pour construire des agents
‒ MetricBeat, PacketBeat, FileBeat
‒ {Community}Beats, lots of them
‒ Immediate availability of new versions
‒ Automated upgrades
Unified release, same version number for all products

7
Agenda
From ELK to Elastic Stack 5.0
Kibana
Timelion
Conclusion
1
2
3
4

8
Kibana evolution
Data VisualizationManagement

9
Kibana evolution: 4.x
Data VisualizationManagement
Discover
Dashboard
Visualize

10
Kibana evolution: 4.x
Data VisualizationManagement
Discover
Dashboard
Visualize
Monitoring

11
Graph
Kibana evolution: 4.x
Data VisualizationManagement
Discover
Dashboard
Visualize
Monitoring

12
Graph
TimelionSense
Kibana evolution: 4.x
Data VisualizationManagement
Discover
Dashboard
Visualize
Monitoring

13
Discover
Dashboard
GraphDevTools
TimelionConsole
Monitoring
Visualize
Kibana evolution: 5.0
Data VisualizationManagement

14
Discover
Dashboard
Graph
Settings
Users
DevTools
Timelion
Monitoring
Visualize
Console
Kibana evolution: 5.0
Data VisualizationManagement

15
Creating a Kibana dashboard
1 2 3 4
Configure
Select indices
Discover
Explore & filter
Visualize
Create charts
Dashboard
Layout charts
5
It’s alive!
Live update &
filtering

17
Creating a Kibana dashboard
1 2 3 4
Configure
Select indices
Discover
Explore & filter
Visualize
Create charts
Dashboard
Layout charts
5
It’s alive!
Live update &
filtering

19
Creating a Kibana dashboard
1 2 3 4
Configure
Select indices
Discover
Explore & filter
Visualize
Create charts
Dashboard
Layout charts
5
It’s alive!
Live update &
filtering

21
Creating a Kibana dashboard
1 2 3 4
Configure
Select indices
Discover
Explore & filter
Visualize
Create charts
Dashboard
Layout charts
5
It’s alive!
Live update &
filtering

23
Creating a Kibana dashboard
1 2 3 4
Configure
Select indices
Discover
Explore & filter
Visualize
Create charts
Dashboard
Layout charts
5
It’s alive!
Live update &
filtering

26
Agenda
From ELK to Elastic Stack 5.0
Kibana
Timelion
Conclusion
1
2
3
4

27
Why Timelion?
• Elasticsearch queries
‒ Select lots of items (lightning fast)
‒ Aggregations make them understandable
• Need more than that
‒ Correlation, calculation, filtering
‒ Assemble multiple data sources
• Timelion started as an experiment
‒ Escape the UI and use the flexibility of a language
Because there’s more than search

28
Time series resampling
A common time reference to allow calculations
Value
Value
Time
Time
Bucket

29
Timelion expression language
A transformation & aggregation pipeline
ES
World
Bank
Graphite
- Sampling
- Aggregation
- Calculation
- Graphic attributes
Data sources
Transformations
Time series
- Data
- Metadata
- Graphic attributes

30
The Timelion expression language
• Functions
‒ abs, cusum, derivative, fit, holt, log, min, max, movingaverage, movingstd, sum, trend
• Combinations
‒ add, divide, multiply, plus, substract
• Filtering
‒ condition, if
• Graphic attributes
‒ bars, color, hide, label, legend, lines, points, range, title, yaxis
• Data sources
‒ elastic, graphite, wbi, quantl
A rich function library

33
Agenda
From ELK to Elastic Stack 5.0
Kibana
Timelion
Conclusion
1
2
3
4

What's hot

Elastic stack PresentationAmr Alaa Yassen

AWS glue technical enablement trainingInfo Alchemy Corporation

Introduction to AWS Glue Amazon Web Services

A Thorough Comparison of Delta Lake, Iceberg and HudiDatabricks

ELK Elasticsearch Logstash and Kibana Stack for Log ManagementEl Mahdi Benzekri

Dynamically Scaling Data Streams across Multiple Kafka Clusters with Zero Fli...Flink Forward

[WhaTap DevOps Day] 세션 2 : 성장하는 엔지니어 학습 문화WhaTap Labs

Hudi architecture, fundamentals and capabilitiesNishith Agarwal

Keeping Up with the ELK Stack: Elasticsearch, Kibana, Beats, and LogstashAmazon Web Services

ELK introductionWaldemar Neto

Introduction to KibanaVineet .

Elastic - ELK, Logstash & KibanaSpringPeople

ksqlDB - Stream Processing simplified!Guido Schmutz

Making Apache Spark Better with Delta LakeDatabricks

What's New in Apache HiveDataWorks Summit

Introduction to Elasticsearch with basics of LuceneRahul Jain

Elasticsearch Tutorial | Getting Started with Elasticsearch | ELK Stack Train...Edureka!

ELK StackPhuc Nguyen

Introduction to Kafka StreamsGuozhang Wang

CDC Stream Processing With Apache Flink With Timo Walther | Current 2022HostedbyConfluent

What's hot (20)

Elastic stack Presentation

AWS glue technical enablement training

Introduction to AWS Glue

A Thorough Comparison of Delta Lake, Iceberg and Hudi

ELK Elasticsearch Logstash and Kibana Stack for Log Management

Dynamically Scaling Data Streams across Multiple Kafka Clusters with Zero Fli...

[WhaTap DevOps Day] 세션 2 : 성장하는 엔지니어 학습 문화

Hudi architecture, fundamentals and capabilities

Keeping Up with the ELK Stack: Elasticsearch, Kibana, Beats, and Logstash

ELK introduction

Introduction to Kibana

Elastic - ELK, Logstash & Kibana

ksqlDB - Stream Processing simplified!

Making Apache Spark Better with Delta Lake

What's New in Apache Hive

Introduction to Elasticsearch with basics of Lucene

Elasticsearch Tutorial | Getting Started with Elasticsearch | ELK Stack Train...

ELK Stack

Introduction to Kafka Streams

CDC Stream Processing With Apache Flink With Timo Walther | Current 2022

Similar to Kibana + timelion: time series with the elastic stack

Elk ruminating on logsMathew Beane

Sumo Logic Cert Jam - Advanced Metrics with KubernetesSumo Logic

What's new in Elasticsearch v5Idan Tohami

Flink in Zalando's World of Microservices Zalando Technology

Flink in Zalando's world of Microservices ZalandoHayley

Apache Kylin @ Big Data Europe 2015Seshu Adunuthula

Deep Dive Into Elasticsearch: Establish A Powerful Log Analysis System With E...Tyler Nguyen

Elisa curve fitting-analysis with ReaderFit.comMiraiBio Group of Hitachi Solutions America, Ltd.

Apache Kylin: OLAP Engine on Hadoop - Tech Deep DiveXu Jiang

Lessons Learned in Deploying the ELK Stack (Elasticsearch, Logstash, and Kibana)Cohesive Networks

AWS Chicago 2016 Lessons Learned Deploying the ELK StackAWS Chicago

AD1545 - Extending the XPages Extension Librarypaidi_ed

ELK Ruminating on Logs (Zendcon 2016)Mathew Beane

Building a Complex, Real-Time Data Management ApplicationJonathan Katz

What You Missed: OpenStack Summit AustinNetApp

Enterprise Data World 2018 - Building Cloud Self-Service Analytical SolutionDmitry Anoshin

Kubernetes 101 WorkshopVishal Biyani

Elasticsearch on AzureElasticsearch

Améliorer OpenStack avec les technologies IntelOdinot Stanislas

CCI2019 - Monitorare SQL Server Senza Andare in Bancarottawalk2talk srl

Similar to Kibana + timelion: time series with the elastic stack (20)

Elk ruminating on logs

Sumo Logic Cert Jam - Advanced Metrics with Kubernetes

What's new in Elasticsearch v5

Flink in Zalando's World of Microservices

Flink in Zalando's world of Microservices

Apache Kylin @ Big Data Europe 2015

Deep Dive Into Elasticsearch: Establish A Powerful Log Analysis System With E...

Elisa curve fitting-analysis with ReaderFit.com

Apache Kylin: OLAP Engine on Hadoop - Tech Deep Dive

Lessons Learned in Deploying the ELK Stack (Elasticsearch, Logstash, and Kibana)

AWS Chicago 2016 Lessons Learned Deploying the ELK Stack

AD1545 - Extending the XPages Extension Library

ELK Ruminating on Logs (Zendcon 2016)

Building a Complex, Real-Time Data Management Application

What You Missed: OpenStack Summit Austin

Enterprise Data World 2018 - Building Cloud Self-Service Analytical Solution

Kubernetes 101 Workshop

Elasticsearch on Azure

Améliorer OpenStack avec les technologies Intel

CCI2019 - Monitorare SQL Server Senza Andare in Bancarotta

Recently uploaded

Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...kellynguyen01

(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...gurkirankumar98700

Call Girls in Naraina Delhi 💯Call Us 🔝8264348440🔝soniya singh

HR Software Buyers Guide in 2024 - HRSoftware.comFatema Valibhai

chapter--4-software-project-planning.pptkotipi9215

The Evolution of Karaoke From Analog to App.pdfPower Karaoke

The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...ICS

Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed DataAlluxio, Inc.

Professional Resume Template for Software DevelopersVinodh Ram

Asset Management Software - InfographicHr365.us smith

Der Spagat zwischen BIAS und FAIRNESS (2024)OPEN KNOWLEDGE GmbH

Unveiling the Tech Salsa of LAMs with Janus in Real-Time ApplicationsAlberto González Trastoy

Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdfkalichargn70th171

The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdfkalichargn70th171

Engage Usergroup 2024 - The Good The Bad_The UglyFrank van der Linden

why an Opensea Clone Script might be your perfect match.pdfjoe51371421

5 Signs You Need a Fashion PLM Software.pdfWave PLM

Russian Call Girls in Karol Bagh Aasnvi ➡️ 8264348440 💋📞 Independent Escort S...soniya singh

Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...stazi3110

Hand gesture recognition PROJECT PPT.pptxbodapatigopi8531

Recently uploaded (20)

Short Story: Unveiling the Reasoning Abilities of Large Language Models by Ke...

(Genuine) Escort Service Lucknow | Starting ₹,5K To @25k with A/C 🧑🏽‍❤️‍🧑🏻 89...

Call Girls in Naraina Delhi 💯Call Us 🔝8264348440🔝

HR Software Buyers Guide in 2024 - HRSoftware.com

chapter--4-software-project-planning.ppt

The Evolution of Karaoke From Analog to App.pdf

The Real-World Challenges of Medical Device Cybersecurity- Mitigating Vulnera...

Alluxio Monthly Webinar | Cloud-Native Model Training on Distributed Data

Professional Resume Template for Software Developers

Asset Management Software - Infographic

Der Spagat zwischen BIAS und FAIRNESS (2024)

Unveiling the Tech Salsa of LAMs with Janus in Real-Time Applications

Learn the Fundamentals of XCUITest Framework_ A Beginner's Guide.pdf

The Essentials of Digital Experience Monitoring_ A Comprehensive Guide.pdf

Engage Usergroup 2024 - The Good The Bad_The Ugly

why an Opensea Clone Script might be your perfect match.pdf

5 Signs You Need a Fashion PLM Software.pdf

Russian Call Girls in Karol Bagh Aasnvi ➡️ 8264348440 💋📞 Independent Escort S...

Building a General PDE Solving Framework with Symbolic-Numeric Scientific Mac...

Hand gesture recognition PROJECT PPT.pptx

Kibana + timelion: time series with the elastic stack

1. 1 Sylvain Wallez @bluxte Kibana + Timelion: Time series with the Elastic Stack

2. 2 Agenda From ELK to Elastic Stack 5.0 Kibana Timelion Conclusion 1 2 3 4

3. 3

4. 4 The Elastic Stack Elastic Cloud Security Monitoring Aler0ng Graph X-Pack KibanaUser Interface ElasticsearchStore, Index, & Analyze Ingest Logstash Beats +

5. 5 What’s new in Elastic Stack 5.0 ? ‒ Dimensional fields – speed up and better compression of numerical data ‒ Ingest node – avoids using Logstash for simple setups ‒ Rollover & Shrink API – better handling of non-hot data ‒ Painless – new fast & secure scripting langage ‒ Complete UI redesign ‒ Control center: config, monitoring, dev tools… and dashboards ‒ Timelion: for time series Unified release, same version number for all products

6. 6 What’s new in Elastic Stack 5.0 ? •  ‒ Up to 50% faster ‒ Integration with Kafka ‒ New filters •  ‒ Libbeat – framework pour construire des agents ‒ MetricBeat, PacketBeat, FileBeat ‒ {Community}Beats, lots of them ‒ Immediate availability of new versions ‒ Automated upgrades Unified release, same version number for all products

7. 7 Agenda From ELK to Elastic Stack 5.0 Kibana Timelion Conclusion 1 2 3 4

8. 8 Kibana evolution Data VisualizationManagement

9. 9 Kibana evolution: 4.x Data VisualizationManagement Discover Dashboard Visualize

10. 10 Kibana evolution: 4.x Data VisualizationManagement Discover Dashboard Visualize Monitoring

11. 11 Graph Kibana evolution: 4.x Data VisualizationManagement Discover Dashboard Visualize Monitoring

12. 12 Graph TimelionSense Kibana evolution: 4.x Data VisualizationManagement Discover Dashboard Visualize Monitoring

13. 13 Discover Dashboard GraphDevTools TimelionConsole Monitoring Visualize Kibana evolution: 5.0 Data VisualizationManagement

14. 14 Discover Dashboard Graph Settings Users DevTools Timelion Monitoring Visualize Console Kibana evolution: 5.0 Data VisualizationManagement

15. 15 Creating a Kibana dashboard 1 2 3 4 Configure Select indices Discover Explore & filter Visualize Create charts Dashboard Layout charts 5 It’s alive! Live update & filtering

16. 16

17. 17 Creating a Kibana dashboard 1 2 3 4 Configure Select indices Discover Explore & filter Visualize Create charts Dashboard Layout charts 5 It’s alive! Live update & filtering

18. 18

19. 19 Creating a Kibana dashboard 1 2 3 4 Configure Select indices Discover Explore & filter Visualize Create charts Dashboard Layout charts 5 It’s alive! Live update & filtering

20. 20

21. 21 Creating a Kibana dashboard 1 2 3 4 Configure Select indices Discover Explore & filter Visualize Create charts Dashboard Layout charts 5 It’s alive! Live update & filtering

22. 22

23. 23 Creating a Kibana dashboard 1 2 3 4 Configure Select indices Discover Explore & filter Visualize Create charts Dashboard Layout charts 5 It’s alive! Live update & filtering

24. 24

25. 2525 Demo!

26. 26 Agenda From ELK to Elastic Stack 5.0 Kibana Timelion Conclusion 1 2 3 4

27. 27 Why Timelion? • Elasticsearch queries ‒ Select lots of items (lightning fast) ‒ Aggregations make them understandable • Need more than that ‒ Correlation, calculation, filtering ‒ Assemble multiple data sources • Timelion started as an experiment ‒ Escape the UI and use the flexibility of a language Because there’s more than search

28. 28 Time series resampling A common time reference to allow calculations Value Value Time Time Bucket

29. 29 Timelion expression language A transformation & aggregation pipeline ES World Bank Graphite - Sampling - Aggregation - Calculation - Graphic attributes Data sources Transformations Time series - Data - Metadata - Graphic attributes

30. 30 The Timelion expression language • Functions ‒ abs, cusum, derivative, fit, holt, log, min, max, movingaverage, movingstd, sum, trend • Combinations ‒ add, divide, multiply, plus, substract • Filtering ‒ condition, if • Graphic attributes ‒ bars, color, hide, label, legend, lines, points, range, title, yaxis • Data sources ‒ elastic, graphite, wbi, quantl A rich function library

31. 31 The Timelion expression language

32. 3232 Demo!

33. 33 Agenda From ELK to Elastic Stack 5.0 Kibana Timelion Conclusion 1 2 3 4

34. 34 Questions? Answers!