- 以前作成したdocker-composeを用いたfluentd環境構築内容をベースにElastic SearchとKibanaを連携させてみる。
コード
- 前回との差分を記載
構成
project - app - api - main.py
|_ Dockerfile
|_ requirements.txt
- fluentd - config - fluent.conf
|_ Dockerfile
- docker-compose.yml
docker-compose.yml
- ElasticsearchとKibanaの項目を追加
version: "3"
services:
app:
container_name: "app"
build: ./app
volumes:
- ./app/api:/usr/src/server
logging:
# ログ出力先にfluentdを指定
driver: "fluentd"
options:
# fluentdサーバの宛先
fluentd-address: "localhost:24224"
# ログに付与するタグ
tag: "docker.{{.Name}}"
ports:
- "8000:8000"
depends_on:
- fluentd
fluentd:
container_name: "fluentd"
build: ./fluentd
volumes:
- ./fluentd/config:/fluentd/etc
links:
- "elasticsearch"
ports:
- "24224:24224"
- "24224:24224/udp"
elasticsearch:
image: docker.elastic.co/elasticsearch/elasticsearch:7.13.1
container_name: "elasticsearch"
environment:
- "discovery.type=single-node"
expose:
- "9200"
ports:
- "9200:9200"
kibana:
image: docker.elastic.co/kibana/kibana:7.13.1
container_name: "kibana"
links:
- "elasticsearch"
ports:
- "5601:5601"
fluentd設定
fluent.conf
<source>
@type forward
port 24224
bind 0.0.0.0
</source>
<match *.**>
@type copy
<store>
@type elasticsearch
host elasticsearch
port 9200
logstash_format true
logstash_prefix fluentd
logstash_dateformat %Y%m%d
include_tag_key true
type_name access_log
tag_key @log_name
flush_interval 1s
</store>
<store>
@type stdout
</store>
</match>
Dockerfile
FROM fluent/fluentd:v1.12.0-debian-1.0
USER root
RUN gem uninstall -I elasticsearch && gem install elasticsearch -v 7.17.0
RUN ["gem", "install", "fluent-plugin-elasticsearch", "--no-document", "--version", "5.2.0"]
USER fluent
動作確認
起動
docker-compose up
リクエスト・レスポンス
GET /v1/users/12345 HTTP/1.1
Host: localhost:8000
{
"user_id": "12345"
}
Kibanaからのログ参照
-
http://localhost:5601/app/management/kibana/indexPatternにアクセス
-
Index pattern nameにfluentd-*を入力し、保存 -
Discoverタブを選択 -
下記のようにアクセスログが出力されていることを確認できる
